Welcome!

News Feed Item

KuppingerCole Report Reviews IT GRC Market and Cites MetricStream as a Pioneer

MetricStream today announced that it has been named as a company with strong IT Governance, Risk, and Compliance (GRC) solutions in the KuppingerCole Vendor Report titled “MetricStream: Bridging the Gap Between Business GRC and IT GRC.” The report has been published by KuppingerCole, a leading Europe-based analyst company for information security both in classical and cloud environments.

Analyzing the IT GRC industry, the KuppingerCole report brings out the security and compliance challenges that organizations face due to the increased use of virtualization technologies and external IT services, as well as emerging and evolving compliance requirements. According to the report, “organizations are in a situation where they are confronted with exponential changes regarding outward-facing processes, users, and external IT services used.” What organizations require today is an IT GRC solution that is agile to business changes, integrates with enterprise GRC, manages evolving risks related to information security and compliance, and monitors business performance.

IT and cyber security risks are a growing concern for most European organizations. With the rise in media attention on privacy and data breaches, European companies are becoming aware of the risk of a data leak ending up in today’s more intense news environment and its impact on business.

Having evaluated the IT GRC market, KuppingerCole says that MetricStream’s strong and integrated portfolio of GRC solutions comes with well-defined controls, security features that address risks and threats arising from social, cloud and virtualization technologies, and capabilities that enable organizations to merge Information Security, IT Risks, and Enterprise GRC to drive business performance.

Says Vasant Balasubramanian, Vice President of Product Management at MetricStream, “KuppingerCole’s report is a testimony to our rich capabilities in IT GRC, and the innovations we have brought to the market to address complex security and compliance risks in an increasingly virtualized and mobile world. MetricStream’s IT GRC solutions enable organizations to harmonize GRC processes across the enterprise, align IT GRC with enterprise GRC processes, and integrate bottom-up IT control processes with top-down risk intelligence.”

With the acquisition of vPanorama cloud GRC technology, MetricStream is enabling its customers to seamlessly manage regulatory compliance, privacy requirements, security threats, vulnerability risks, and performance metrics across the entire spectrum of virtual assets in the cloud, as well as on-premise virtual infrastructure.

Martin Kuppinger, Founder and Principal Analyst at KuppingerCole, says, “From the IT perspective, GRC has moved from technical system-oriented approaches towards information and service governance. We found MetricStream’s IT GRC solutions to be well-thought and mature based on parameters such as security, functionality, usability, integration capability, and interoperability. The platform also supports business requirements and integrates with other IT security and GRC point solutions to provide a complete enterprise GRC approach.”

The report also recommends that organizations looking for GRC solutions carefully evaluate GRC solution vendors. As per the report, “There are different vendors with fundamentally different offerings. While some provide Enterprise GRC solutions focusing on specific aspects of business, ignoring IT GRC, there are others who provide Enterprise GRC that support IT controls and integrate with specific IT GRC solutions. Organizations therefore need to evaluate and analyze GRC vendors based on whether the vendor’s roadmap is aligned with the evolutions in the business landscape and if the current offerings are mature enough to support the changing business requirements of organizations.”

Mr. Balasubramanian also goes on to say, “MetricStream has a strong track record in providing IT GRC solutions in the European market, the most recent being the implementation of the solution by one of the world's largest international online sports betting services provider. This is attributed to MetricStream’s understanding of the global markets and the specific GRC needs of organizations in different locations.”

Please click here to download the report.

About MetricStream

MetricStream is a market leader in Enterprise-wide Governance, Risk, Compliance (GRC) and Quality Management Solutions for global corporations. MetricStream solutions are used by leading corporations such as UBS, P&G, Constellation Energy, Pfizer, Philips, BAE Systems, Twitter, SanDisk, Cummins and Sonic Automotive in diverse industries such as Financial Services, Healthcare, Life Sciences, Energy and Utilities, Food, Retail, CPG, Government, Hi-tech and Manufacturing to manage their risk management programs, quality processes, regulatory and industry-mandated compliance and corporate governance initiatives, as well as several million compliance professionals worldwide via the www.ComplianceOnline.com portal. MetricStream is headquartered in Palo Alto, California with European offices in London, Paris, Milan and Basel and can be reached at www.metricstream.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
WebRTC is about the data channel as much as about video and audio conferencing. However, basically all commercial WebRTC applications have been built with a focus on audio and video. The handling of “data” has been limited to text chat and file download – all other data sharing seems to end with screensharing. What is holding back a more intensive use of peer-to-peer data? In her session at @ThingsExpo, Dr Silvia Pfeiffer, WebRTC Applications Team Lead at National ICT Australia, looked at differ...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service. In his session at 19th Cloud Exp...
For basic one-to-one voice or video calling solutions, WebRTC has proven to be a very powerful technology. Although WebRTC’s core functionality is to provide secure, real-time p2p media streaming, leveraging native platform features and server-side components brings up new communication capabilities for web and native mobile applications, allowing for advanced multi-user use cases such as video broadcasting, conferencing, and media recording.
With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo 2016 in New York. Learn what is going on, contribute to the discussions, and ensure that your enterprise is as "IoT-Ready" as it can be! Internet of @ThingsExpo, taking place June 6-8, 2017, at the Javits Center in New York City, New York, is co-located with 20th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry p...
"Plutora provides release and testing environment capabilities to the enterprise," explained Dalibor Siroky, Director and Co-founder of Plutora, in this SYS-CON.tv interview at @DevOpsSummit, held June 9-11, 2015, at the Javits Center in New York City.
Security, data privacy, reliability and regulatory compliance are critical factors when evaluating whether to move business applications from in-house client hosted environments to a cloud platform. In her session at 18th Cloud Expo, Vandana Viswanathan, Associate Director at Cognizant, In this session, will provide an orientation to the five stages required to implement a cloud hosted solution validation strategy.
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, New York, and 21st International Cloud Expo, which will take place in November in Silicon Valley, California.
The security needs of IoT environments require a strong, proven approach to maintain security, trust and privacy in their ecosystem. Assurance and protection of device identity, secure data encryption and authentication are the key security challenges organizations are trying to address when integrating IoT devices. This holds true for IoT applications in a wide range of industries, for example, healthcare, consumer devices, and manufacturing. In his session at @ThingsExpo, Lancen LaChance, vic...
SYS-CON Events announced today that delaPlex will exhibit at SYS-CON's @CloudExpo, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. delaPlex pioneered Software Development as a Service (SDaaS), which provides scalable resources to build, test, and deploy software. It’s a fast and more reliable way to develop a new product or expand your in-house team.
Wooed by the promise of faster innovation, lower TCO, and greater agility, businesses of every shape and size have embraced the cloud at every layer of the IT stack – from apps to file sharing to infrastructure. The typical organization currently uses more than a dozen sanctioned cloud apps and will shift more than half of all workloads to the cloud by 2018. Such cloud investments have delivered measurable benefits. But they’ve also resulted in some unintended side-effects: complexity and risk. ...
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
More and more brands have jumped on the IoT bandwagon. We have an excess of wearables – activity trackers, smartwatches, smart glasses and sneakers, and more that track seemingly endless datapoints. However, most consumers have no idea what “IoT” means. Creating more wearables that track data shouldn't be the aim of brands; delivering meaningful, tangible relevance to their users should be. We're in a period in which the IoT pendulum is still swinging. Initially, it swung toward "smart for smart...
When you focus on a journey from up-close, you look at your own technical and cultural history and how you changed it for the benefit of the customer. This was our starting point: too many integration issues, 13 SWP days and very long cycles. It was evident that in this fast-paced industry we could no longer afford this reality. We needed something that would take us beyond reducing the development lifecycles, CI and Agile methodologies. We made a fundamental difference, even changed our culture...
The Internet of Things can drive efficiency for airlines and airports. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Sudip Majumder, senior director of development at Oracle, discussed the technical details of the connected airline baggage and related social media solutions. These IoT applications will enhance travelers' journey experience and drive efficiency for the airlines and the airports.
In his keynote at @ThingsExpo, Chris Matthieu, Director of IoT Engineering at Citrix and co-founder and CTO of Octoblu, focused on building an IoT platform and company. He provided a behind-the-scenes look at Octoblu’s platform, business, and pivots along the way (including the Citrix acquisition of Octoblu).