Industries Overview

The need to assess, measure and manage information risk and to comply with an ever increasing number of State, national and international regulations, industry mandates, and internal policies is shared across all industry sectors and government institutions.

US public organizations, including most Manufacturing and High-Technology companies, are subject to SOX. Increasingly, companies are standardizing on best-practices frameworks including ISO17799/27001, CobiT, ITIL, NIST-SP800. In addition, many verticals have specific requirements due to the sensitivity or confidentiality of information they collect and process, or the nature of the industry they are in.

Financial institutions, for example, primarily worry about compliance with GLBA, FFIEC and BASEL ll. The Retail and Banking industry is focused on PCI DSS. Healthcare and Life Sciences companies are mostly concerned about HIPAA, Energy and Utilities with NERC, and Government Organizations with FISMA. These are but a few of an ever growing list of vertical mandates that must be heeded by organizations in the respective fields.

As companies evolve into global supply chains consisting of very many partners, third-party vendors and sub-contractors, risk management challenges and compliance requirements expand to the extended enterprise.

The Agiliance IT-GRC solution can end the spiraling cost and heavy burden of compliance and risk management in a global economy.

While fully customizable, Agiliance IT-GRC offers an out-of-the-box standards-based solution that effectively and uniquely addresses the compliance management and audit needs of each particular vertical. It seamlessly integrates vendor risk management and minimizes the incremental cost of complying with multiple regulations.