1. A Practical way to manage your risk & compliance operations

2. Agenda About MSP ValueScope Where and How we operate Case studies and Testimonials 3. Blue Chip Customers - examplesMy Single Point company confidential 4. About MSP Blue chip enterprise customersDistributed by VARs (Atos, Accenture, E&Y, PWC, BDO and more) Supports both SaaS and on-site deployment http://youtu.be/iGj48BBu7ok 5. The scene Managing GRC as an operative process Governance, Risk & Compliance is a critical process that crosses the organization structureYour excel sheets, GRC systems are maintained accurately but are overwhelmed with data, consequently VPs are surprised to figure out they have pending issues to resolveGRC is perceived as reactive sometimes detached from the operational reality 6. Examples to questions MSP covers How can I gain a real-time, clear view over my GRC operations, compliance status and mitigation plan pipeline / backlog ? How can I present a clear action plan for the stake and share holders?How can I consolidate multi-source (SOX, Solvency, Internal Audits) regulations and requirements to assure coverage while avoid overlapping reviews? How can I assure the validly of the data presented to / by me? 7. Whats in the Tin? Manage and automate the GRC entire life cycle based on best practices Integrate with your existing GRC systems Set the roles and accountabilities as part of the process and the corporate managerial frameworks that maintain it Perform what-if scenarios to optimize the level of impact vs. cost associated Set, automate & enforce the processes, procedures, practices and controls to facilitate compliance Set the controls, reports and Key Performance Indicators (KPIs) on top of this foundation 8. Benefits / USPs MSP is a multidisciplinary platform combing all aspects related to decision making (vulnerabilities, risks, budgets, resources, assets, portfolios) integrated with entire range of existing IT systems of all brandsMSP provides advanced what-if scenarios that enforces the processes and the meta data validity but most importantly provides managerial proactive capabilities that would actively affect the business result MSP is extremely cost effective (TCO) with a modest cost of licensing implementation and maintenance Unique Methodology for assuring implementation is successful 9. Risk Operations Model - example Risk Survey instance Risk & compliance SurveysRegulatory sourceFindingsRegulatory DemandOrg structureSkillsBudget planStrategyCapacityTopic reviewAssetsReview themeFindingOrganizational impactBusiness DemandControls ProceduresThreat & exposuresOrganization agenda (Service catalog) SLAProcessRiskControl ObjectivesRegulation ConsolidationVulnerabilitySOX Roles & accountabilitiesDocumentsISO Solvency 10. End customer examples #CompanyWho are they?We started with ..1Vodafone UK (Network Security Unit) multi billion Euro companyDecreasing the Vodafone Network vulnerability2Israeli Ministry of DefenseManaging the Ops business demand, improving delivery & alignment 20% increase in customer satisfaction3Israels Aerospace Industry multi billion Euro companyManaging the budget, operations, capacity and priorities decrease managerial overheads by 25% 11. CRO office scope (Chief Risks Office) Manage the Risk entire life cycle based on best practices Manage the Enterprise Risks and align it with the corporate goals, budgets and operationsPerform what-if scenarios to optimize the level of risk impact vs. cost associated Set automate & enforce the processes, procedures, practices and controls to facilitate governance Setting the controls, reports and Key Performance Indicators (KPIs) on top of this foundation Setting the roles and accountabilities as part of the process and the corporate managerial frameworks that maintain it Set and control the transparency Create a competitive advantage 12. Solution Architectural Landscape (Capabilities)