UCF Common Controls Hub
Innovation for Compliance Management
[tabs style=”default”] [tab title=”Executive Summary”]
GRC professionals spend significant time and resources researching which mandates they must follow and struggling to keep up with new requirements. And it’s difficult to understand how new mandates are connected with the controls already in place. Consequently, each mandate is often managed separately even though many tasks and regulatory demands are redundant across multiple requirements. The result is missed requirements, wasted time, and accelerated costs. The Unified Compliance Framework®’s (UCF®) Common Controls Hub™ is a GRC intelligence solution that GRC 20/20 has researched, evaluated, and reviewed with organizations that are using it in changing, distributed, and dynamic business environments. Built on the UCF, the Common Controls Hub enables organizations to scope, define, and maintain regulatory demands online in minutes to dramatically improve the efficiency, effectiveness, and agility of their GRC program as well as business operations. GRC 20/20 has evaluated and verified the innovation found in the Common Controls Hub and sees this as a compelling offering for compliance management in the context of regulatory change that will advance GRC technology and make organizations more efficient, effective, and agile. In this context, GRC 20/20 has recognized Unified Compliance’s Common Controls Hub with a 2015 GRC Innovation Award for the best innovation in Compliance Management in 2015.
[/tab] [tab title=”Table of Contents”]
- Organizations Struggle with Standards Certification
- Navigating the Distributed, Dynamic & Disrupted Waters of Standards
- Fragmented Islands of Documents Compound the Problem
- ISMS Solutions Conformance Works
- Effectively Managing the Standards Certification Process
- What Conformance Works Does
- Conformance Works Enables Standard Certification Processes
- Foundational Capabilities Delivered in Conformance Works
- Benefits Organizations Have Received with Conformance Works
- Considerations in Context of Conformance Works
- About GRC 20/20 Research, LLC
- Research Methodology
[/tab] [tab title=”Author”]
Michael Rasmussen – The GRC Pundit @ GRC 20/20 Research, Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on the topics of GRC strategy, process, information, and technology architectures and solutions. With 23+ years of experience, Michael helps organizations improve GRC processes, design and implement GRC architectures, and select solutions that are effective, efficient, and agile. He is a sought-after keynote speaker, author, and advisor and is noted as the “Father of GRC” — being the first to define and model the GRC market in February 2002 while at Forrester Research, Inc.
©GRC 20/20 Research, LLC. All Rights Reserved.
No part of this publication may be reproduced, adapted, stored in a retrieval system or transmitted in any form by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior permission of GRC 20/20 Research, LLC. If you are authorized to access this publication, your use of it is subject to the Usage Guidelines established in client contract. The information contained in this publication is believed to be accurate and has been obtained from sources believed to be reliable but cannot be guaranteed and is subject to change. GRC 20/20 accepts no liability whatever for actions taken based on information that may subsequently prove to be incorrect or errors in analysis. This research contains opinions of GRC 20/20 analysts and should not be construed as statements of fact. GRC 20/20 disclaims all warranties as to the accuracy, completeness or adequacy of such information and shall have no liability for errors, omissions or inadequacies in such information. Although GRC 20/20 may include a discussion of related legal issues, GRC 20/20 does not provide legal advice or services and its research should not be construed or used as such.