Karthik Kumar Sunder
As a global firm with several lines of business, the client needs to comply with many regulatory authorities and industry standards. Managing their consolidated security framework with 1000s of controls in spreadsheets was challenging. Service Management teams were frustrated because they were being requested to provide the same evidence to multiple compliance teams.
INRY’s team of GRC experts mapped controls and processes in ServiceNow to respective owners, and created automated workflows to eliminate the need for manual evidence collection.
The new tailored solution combines multiple ServiceNow products to auto-create risks and supports their Assessment and Response process
ServiceNow as a single system of record replaced spreadsheets with centralized and consolidated information for policies, compliance, risk, and audit
Ability to easily track available evidence ensured that service management teams no longer needed to provide the same type of evidence multiple times
Successful ServiceNow GRC Rollout for two pilot divisions provided the client with a scalable system to drive an enterprise-wide rollout strategy