The market for governance, risk, and compliance is still a maelstrom. Some vendors offer GRC software for the enterprise (eGRC), whereas others offer GRC for monitoring access and communications for compliance (IT-GRC). What’s more—both branches of GRC use technology to automate highly complex processes, while some GRC vendors offer capabilities that overlap both areas. To get a sense of the current attitudes toward GRC, Hypatia Research evaluated more than 20 GRC software vendors and interviewed more than 660 users of these applications. Read up on best practices, benchmarks, and vendor ranking.
dcaa compliance procedures