..

This design element requires flash & JavaScript to be enabled to play. Download the latest version of flash from Adobe.com.

Managing Governance Risk & Compliance (GRC)

commissum Managed Security services allow us to free up your resources and lighten your workload with our first-class range of management services. These include our outsourced CISO offering, Managing your alignment to ISO27001, helping you to manage critical Business Continuity, and at a more technical level, regular managed testing of your network, applications, and blended code review.

Unified Governance Risk & Compliance (GRC)

commissum partners with DB3 and HiScout to deliver a world class solution for true unified Governance Risk and Compliance (GRC).

GRC management issues

Are you fully embracing the demands of Governance, Risk and Compliance (GRC)? Typically you will have a number of approaches to managing its various facets; you may already have solutions for business continuity, for IT security, aligning with ISO27001, for quality management, etc. You will probably have risk management carried out by various departments, all identifying risks and controls and reporting on these individually. Managing all of this and pulling it all together into a coherent picture upon which business decisions can be made and priorities based in an efficient and effective way is a complex challenge.

The Solution - Unified GRC with HiScout

commissum, partnering with HiScout is able to bring you a proven, truly unified approach to this challenge. The HiScout GRC Suite is an engine for comprehensive Governance, Risk and Compliance Management in organization of all sizes in any industry. Whether you are a head of business continuity, information security, quality or service management, or a CSO or CRO who handles multiple GRC topics, commissum and HiScout can deliver you an outstanding solution through HiScout as a tool to help you perform your duties and responsibilities.

HiScout GRC Suite centrally maps all relevant information from supported GRC disciplines, consistently and without redundancies. The solution is modular, providing different departments with targeted support in complying with their individual GRC processes while still providing a unified GRC approach for the business as a whole.

Each department gets its own unique solution that supports the specific standards and requirements it needs to meet. But they are not isolated solutions – HiScout GRC Suite gathers data from all departments, and lets you use it as a group and create an overall view by compiling it all simply and efficiently.

That is truly unified GRC management.

HiScout GRC Suite currently includes the following modules: 

  • Information Security Management
  • IT Service Management
  • Business Continuity Management
  • Risk Management
  • Quality Management
  • Compliance Management

The modules will help you get started with your own implementation of GRC. They contain up-to-date collections of recognised standards and guidelines like COBIT, ITIL, BSI 100-1 to 100-4, ISO/IEC 20000, 27001, 27002 and BS 25999, plus valuable best-practice blueprints for processes, templates, plans, databases, monitoring procedures and much more.

It doesn’t matter which disciplines you map first, because HiScout GRC Suite can seamlessly integrate subsequent modules. Because the modules are interconnected, they will use data from other areas, which avoids redundancies and errors.

Contact us for further information or a demonstration; or download our service sheet today.

commissum partners with HiScout.

Get in touch with one of our security consultants today

  • No obligation
  • Expert advice
  • Tailored solutions
"commissum recently provided invaluable advice and support, ensuring the success of our secure remote access project, and has provided us with annual penetration testing and managed service scanning for several years. I would happily recommend commissum to others for their professionalism and quality of service.”

Mr Tim R, IT Director, International Law Firm

Latest News

gas-mask-laptop

Pirate Bay illegal file-sharing website falls victim to hacking attack

The Pirate Bay website was taken offline for more than twenty-four hours after a distributed denial-of-service (DDoS) attack on May 15-16. The illegal file-sharing website was the subject of a massive increase in traffic to its web servers, clearly organised by hackers unsympathetic to its aims of providing songs, films ...
Thu 17 May, 2012 // Briony
mobile-and-keyboard

Android phones face new security threat from hacked websites

For the first time, Android mobile phones are now being targeted by cybercriminals whenever the user browses a compromised website. The websites have been hacked so that, merely by visiting the site, the user will unknowingly download a malicious app to the phone.Known as a “drive-by download”, this particular route ...
Fri 11 May, 2012 // Briony
two-tanks

NATO cyber defence exercise prefigures the shape of things to come

In March 2012, NATO carried out an innovative cyber-defence simulation exercise. The exercise featured experts from throughout the cyber-security industry. This particular exercise concentrated on communications systems. The headquarters of the exercise was based at CCDCOE (NATO’s Co-operative Cyber Defence Centre of Excellence), in Tallinn, Estonia.The participants were divided into ...
Mon 30 Apr, 2012 // Briony