Automatised protection of systems integrity in a cyber rich environment is what an iGRC capability provides - real-time visibility of threat levels and control status – an active risk picture…and more.

But visibility is not enough.  Actions need to be carried out automatically to avoid, block or suppress attacks rapidly, and with as little human intervention as possible.

In recent times, IS policies and controls were guided primarily by regulatory compliance activities.  Clearly, with recent cyber events this is not enough.  Regulation alone is clearly inadequate when protecting against the growing sophistication and volumes of threats and targeted cybercrime attacks.

The iGRC Consortium delivers the new mindset required to move integrated risk and compliance management into the operations room - with the real-time adjunct.  Mitigating systems risks by implementing security controls, policies, and procedures etc and varying measures to counter threats and vulnerabilities has been possible for many years, of course.  iGRC and its fundamental component, the GRCiP interface, couples real-time sensors deployed on and between networks to the Proteus® information security management system for automatic threat and control level response. 

The real-time sensors dimension is supplied and championed by our lead network level partners – Assuria and Nexor.