Welcome!

News Feed Item

KuppingerCole Report Reviews IT GRC Market and Cites MetricStream as a Pioneer

MetricStream today announced that it has been named as a company with strong IT Governance, Risk, and Compliance (GRC) solutions in the KuppingerCole Vendor Report titled “MetricStream: Bridging the Gap Between Business GRC and IT GRC.” The report has been published by KuppingerCole, a leading Europe-based analyst company for information security both in classical and cloud environments.

Analyzing the IT GRC industry, the KuppingerCole report brings out the security and compliance challenges that organizations face due to the increased use of virtualization technologies and external IT services, as well as emerging and evolving compliance requirements. According to the report, “organizations are in a situation where they are confronted with exponential changes regarding outward-facing processes, users, and external IT services used.” What organizations require today is an IT GRC solution that is agile to business changes, integrates with enterprise GRC, manages evolving risks related to information security and compliance, and monitors business performance.

IT and cyber security risks are a growing concern for most European organizations. With the rise in media attention on privacy and data breaches, European companies are becoming aware of the risk of a data leak ending up in today’s more intense news environment and its impact on business.

Having evaluated the IT GRC market, KuppingerCole says that MetricStream’s strong and integrated portfolio of GRC solutions comes with well-defined controls, security features that address risks and threats arising from social, cloud and virtualization technologies, and capabilities that enable organizations to merge Information Security, IT Risks, and Enterprise GRC to drive business performance.

Says Vasant Balasubramanian, Vice President of Product Management at MetricStream, “KuppingerCole’s report is a testimony to our rich capabilities in IT GRC, and the innovations we have brought to the market to address complex security and compliance risks in an increasingly virtualized and mobile world. MetricStream’s IT GRC solutions enable organizations to harmonize GRC processes across the enterprise, align IT GRC with enterprise GRC processes, and integrate bottom-up IT control processes with top-down risk intelligence.”

With the acquisition of vPanorama cloud GRC technology, MetricStream is enabling its customers to seamlessly manage regulatory compliance, privacy requirements, security threats, vulnerability risks, and performance metrics across the entire spectrum of virtual assets in the cloud, as well as on-premise virtual infrastructure.

Martin Kuppinger, Founder and Principal Analyst at KuppingerCole, says, “From the IT perspective, GRC has moved from technical system-oriented approaches towards information and service governance. We found MetricStream’s IT GRC solutions to be well-thought and mature based on parameters such as security, functionality, usability, integration capability, and interoperability. The platform also supports business requirements and integrates with other IT security and GRC point solutions to provide a complete enterprise GRC approach.”

The report also recommends that organizations looking for GRC solutions carefully evaluate GRC solution vendors. As per the report, “There are different vendors with fundamentally different offerings. While some provide Enterprise GRC solutions focusing on specific aspects of business, ignoring IT GRC, there are others who provide Enterprise GRC that support IT controls and integrate with specific IT GRC solutions. Organizations therefore need to evaluate and analyze GRC vendors based on whether the vendor’s roadmap is aligned with the evolutions in the business landscape and if the current offerings are mature enough to support the changing business requirements of organizations.”

Mr. Balasubramanian also goes on to say, “MetricStream has a strong track record in providing IT GRC solutions in the European market, the most recent being the implementation of the solution by one of the world's largest international online sports betting services provider. This is attributed to MetricStream’s understanding of the global markets and the specific GRC needs of organizations in different locations.”

Please click here to download the report.

About MetricStream

MetricStream is a market leader in Enterprise-wide Governance, Risk, Compliance (GRC) and Quality Management Solutions for global corporations. MetricStream solutions are used by leading corporations such as UBS, P&G, Constellation Energy, Pfizer, Philips, BAE Systems, Twitter, SanDisk, Cummins and Sonic Automotive in diverse industries such as Financial Services, Healthcare, Life Sciences, Energy and Utilities, Food, Retail, CPG, Government, Hi-tech and Manufacturing to manage their risk management programs, quality processes, regulatory and industry-mandated compliance and corporate governance initiatives, as well as several million compliance professionals worldwide via the www.ComplianceOnline.com portal. MetricStream is headquartered in Palo Alto, California with European offices in London, Paris, Milan and Basel and can be reached at www.metricstream.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Web Real-Time Communication APIs have quickly revolutionized what browsers are capable of. In addition to video and audio streams, we can now bi-directionally send arbitrary data over WebRTC's PeerConnection Data Channels. With the advent of Progressive Web Apps and new hardware APIs such as WebBluetooh and WebUSB, we can finally enable users to stitch together the Internet of Things directly from their browsers while communicating privately and securely in a decentralized way.
Information technology (IT) advances are transforming the way we innovate in business, thereby disrupting the old guard and their predictable status-quo. It’s creating global market turbulence. Industries are converging, and new opportunities and threats are emerging, like never before. So, how are savvy chief information officers (CIOs) leading this transition? Back in 2015, the IBM Institute for Business Value conducted a market study that included the findings from over 1,800 CIO interviews ...
"We host and fully manage cloud data services, whether we store, the data, move the data, or run analytics on the data," stated Kamal Shannak, Senior Development Manager, Cloud Data Services, IBM, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
What sort of WebRTC based applications can we expect to see over the next year and beyond? One way to predict development trends is to see what sorts of applications startups are building. In his session at @ThingsExpo, Arin Sime, founder of WebRTC.ventures, will discuss the current and likely future trends in WebRTC application development based on real requests for custom applications from real customers, as well as other public sources of information,
Whether you like it or not, DevOps is on track for a remarkable alliance with security. The SEC didn’t approve the merger. And your boss hasn’t heard anything about it. Yet, this unruly triumvirate will soon dominate and deliver DevSecOps faster, cheaper, better, and on an unprecedented scale. In his session at DevOps Summit, Frank Bunger, VP of Customer Success at ScriptRock, discussed how this cathartic moment will propel the DevOps movement from such stuff as dreams are made on to a practic...
Interoute has announced the integration of its Global Cloud Infrastructure platform with Rancher Labs’ container management platform, Rancher. This approach enables enterprises to accelerate their digital transformation and infrastructure investments. Matthew Finnie, Interoute CTO commented “Enterprises developing and building apps in the cloud and those on a path to Digital Transformation need Digital ICT Infrastructure that allows them to build, test and deploy faster than ever before. The int...
In his General Session at 17th Cloud Expo, Bruce Swann, Senior Product Marketing Manager for Adobe Campaign, explored the key ingredients of cross-channel marketing in a digital world. Learn how the Adobe Marketing Cloud can help marketers embrace opportunities for personalized, relevant and real-time customer engagement across offline (direct mail, point of sale, call center) and digital (email, website, SMS, mobile apps, social networks, connected objects).
For organizations that have amassed large sums of software complexity, taking a microservices approach is the first step toward DevOps and continuous improvement / development. Integrating system-level analysis with microservices makes it easier to change and add functionality to applications at any time without the increase of risk. Before you start big transformation projects or a cloud migration, make sure these changes won’t take down your entire organization.
"My role is working with customers, helping them go through this digital transformation. I spend a lot of time talking to banks, big industries, manufacturers working through how they are integrating and transforming their IT platforms and moving them forward," explained William Morrish, General Manager Product Sales at Interoute, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, will discuss some of the security challenges of the IoT infrastructure and relate how these aspects impact Smart Living. The material will be delivered i...
SYS-CON Events announced today that Ocean9will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Ocean9 provides cloud services for Backup, Disaster Recovery (DRaaS) and instant Innovation, and redefines enterprise infrastructure with its cloud native subscription offerings for mission critical SAP workloads.
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, will provide a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services ...
Imagine having the ability to leverage all of your current technology and to be able to compose it into one resource pool. Now imagine, as your business grows, not having to deploy a complete new appliance to scale your infrastructure. Also imagine a true multi-cloud capability that allows live migration without any modification between cloud environments regardless of whether that cloud is your private cloud or your public AWS, Azure or Google instance. Now think of a world that is not locked i...
SYS-CON Events announced today that Auditwerx will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Auditwerx specializes in SOC 1, SOC 2, and SOC 3 attestation services throughout the U.S. and Canada. As a division of Carr, Riggs & Ingram (CRI), one of the top 20 largest CPA firms nationally, you can expect the resources, skills, and experience of a much larger firm combined with the accessibility and atten...