[email protected] / +1-855-366-8444
TRANSCRIPT
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
4 OFFERINGS OF EXCELLENCE
Professional ServicesFull-Stack Atlassian Support
MigrationsSupport/Training
Domain ExpertiseAccredited Atlassian expertsPMP’s & Scrum mastersITSM/ITIL process expertsGRC expertise
Managed ServicesFully managed end to end Licensing
HostingExtended Payment Terms
SolutionsDevOps/ITSMScaled AgileReal-Time PPMSDLCGRC
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444 4
www.blended.net / [email protected] / +1-855-366-8444
https://www.blendedperspectives.com/reimagining-grc-governance-risk-compliance/
www.blended.net / [email protected] / +1-855-366-8444 6
ITIL 4
SAFe
Integrated GRC
Dev Ops
Integration
Cooperation
Value Delivery
Performance over control
Enterprise Relationship Management
www.blended.net / [email protected] / +1-855-366-8444
GRC is IRM (Integrated Risk Management)
• DRM Digital Risk
Management
• VRM Vendor Risk
Management
• BCM Business Continuity
Management
• AM Audit Management
• CCO Corporate Compliance
and Oversight
• ELM Enterprise Legal
Management
The Move to Integrated Risk Management
www.blended.net / [email protected] / +1-855-366-8444
According to Gartner IRM requires;• Content management• Document management• User event input/output, distribution, and communication• Risk analytics• Risk and control management• Workflow management• Audit management• Dashboards and reporting• Regulatory change management
Typical features;•Alerts/Notifications• Audit Planning• Auditing• Business Process Control• Corrective Actions (CAPA)• Dashboard• Exceptions Management• IT Risk Management• Internal Controls Management• Issue Management
www.blended.net / [email protected] / +1-855-366-8444
https://www.blendedperspectives.com/reimagining-grc-governance-risk-compliance/
Fortress Architectures are widespread and embedded
www.blended.net / [email protected] / +1-855-366-8444
Salesforce
Service Now
Jira
SAP/Oracle
Clarity/Planview
Lockpath/Metric streamCRM
ITSM
GRC
SDLC/Devops
ERP
PPM
And many others
Risk Management solutions are not frankly that great!
www.blended.net / [email protected] / +1-855-366-8444
•Stand alone point based solutions – Audit findings in Auditor’s system•Risk management events dispersed in fortress architectures•Spreadsheets Spreadsheets Spreadsheets•No collaborative dimension to tracking just email•Difficult to see threats across the various silos
www.blended.net / [email protected] / +1-855-366-8444
If you spend most of your time
talking about transformation, cyber
security and IT – I have a pretty
good answer for you
www.blended.net / [email protected] / +1-855-366-8444
Who is this Atlassian?
www.blended.net / [email protected] / +1-855-366-8444
185,000 plus customers
30,000 plus service management
customers
75% of all Agile teams use Jira &
Confluence
www.blended.net / [email protected] / +1-855-366-8444
Research Methodology & Approach
The Marketplace
is a giant
functional
laboratory!
www.blended.net / [email protected] / +1-855-366-8444
MARS - Marketplace Analytics
Research Service
We have created a database
that tracks all 3rd party apps
that is organized via our own
custom categories
www.blended.net / [email protected] / +1-855-366-8444
Marketplace Overview
Administration
Database
Business Analysis
Code Management
CRM
Integration
Mobile
Publishing
Security
Time Management
Utilities
Code Build
Collaboration
Diagramming
Forms
PlanningReporting
Scripting / Automation
Test Management
Translation
Workflows
0
20
40
60
80
100
120
-4% -2% 0% 2% 4% 6% 8% 10% 12%
Nu
mber
of A
pps
2021 Percentage Growth
Synthesis T M
www.blended.net / [email protected] / +1-855-366-8444
PPM
GRC
Testing
CRM
HR
Collection of structured solution configurations and documentation as well as knowledge structures which act as a solution accelerator
HIGH LEVEL BLUEPRINT
GRC PORTAL
Status
Overall Risk Views
PORTFOLIO VIEWSWork Portfolio
Virtual Management & Reporting
GRC Documentation
Control Management
Single Platform!
www.blended.net / [email protected] / +1-855-366-8444
• Business Risks
• IT risks
• Financial risks
• Legal risks
• Incidents
• Security threats
• Controls
• Audit findings
• Tasks
• Audit projects
• Remediation projects
Jira What’s it all about?
www.blended.net / [email protected] / +1-855-366-8444
Highly functional UI
“Issue type” = Item type
Confluence What’s it all about?
www.blended.net / [email protected] / +1-855-366-8444
High Level View – User Interface
www.blended.net / [email protected] / +1-855-366-8444
• Single platform
enables a fully
integrated view
across enterprise
application domains
• We walk the talk!
• Enables cross
enterprise or
integrated line of
business views also
GRC High Level View
www.blended.net / [email protected] / +1-855-366-8444
• Major functional
components
• Easy to modify
• Simplifies user
interface
• OKRs are included
throughout this solution
• Simply a template
ready for modification
Risk Records
www.blended.net / [email protected] / +1-855-366-8444
Risk Management -Kanban
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Transparency across the enterprise
www.blended.net / [email protected] / +1-855-366-8444
Wrap
www.blended.net / [email protected] / +1-855-366-8444
• We know budgets are always tight – if you have
Atlassian – Jira/Confluence – you can simply use
them for all GRC – save big dollars!!
• Push back against silo approaches to GRC – risk is
where you find it
• Adopt Agile GRC and constantly evolve (forget
fixed SAAS solutions
Wrap
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Audit Management
Risk Management –Audit Management
www.blended.net / [email protected] / +1-855-366-8444
Issue Type = Finding
www.blended.net / [email protected] / +1-855-366-8444
Audit Finding = Issue Type
5 C’s
Condition = What is the particular problem identified?
Criteria = What is the standard that was not met?
Cause = Why did the problem occur?
Consequence = What is the risk?
Corrective action = What should management do?
Risk Management –Audit Management
www.blended.net / [email protected] / +1-855-366-8444
Risk Management –Audit Management
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Findings Dashboard
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Assessment core records
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessment record and Sub tasks
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Plan
www.blended.net / [email protected] / +1-855-366-8444
Assessment Self Service
www.blended.net / [email protected] / +1-855-366-8444
Assessment Service Desk
www.blended.net / [email protected] / +1-855-366-8444
Assessment Dashboard
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Control Management
www.blended.net / [email protected] / +1-855-366-8444
LOB
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Incident Management
Incident Management – Open to all
www.blended.net / [email protected] / +1-855-366-8444
Incident Management – Dashboard
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Vendor Management
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
LOB
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
Enterprise
Enterprise
www.blended.net / [email protected] / +1-855-366-8444
Enterprise
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444
Risk Management – Assessments Kanban
www.blended.net / [email protected] / +1-855-366-8444
GRC Documentation
www.blended.net / [email protected] / +1-855-366-8444
Approach Agile Sprint iterations – Don’t stop improving
www.blended.net / [email protected] / +1-855-366-8444
Conclusions Benefits
www.blended.net / [email protected] / +1-855-366-8444
• PM risks become GRC risks
• ITIL/ITSM incidents transparent – they are in Jira
• Start with a working blueprint speeding up your solution
• Highly configurable solution to meet most complex use cases
• Initial functioning solution in 10 days!
• Custom documentation along the way
• Training can be part of later sprints
• Leverages everyone managing risk – less silos
Approach
www.blended.net / [email protected] / +1-855-366-8444
www.blended.net / [email protected] / +1-855-366-8444