7/28/2019 Bussines Brief

1/2

INFORMATIONENABLES

Oracle Solutions or

Governance, Risk,

and Compliance

Weve reduced the amount

o time it takes to complete

routine audits rom two

months to two days [with

Oracle Governance, Risk, and

Compliance Controls Suite].

Darlene Mac Cormac

VP o Procurement and

Strategic Sourcing

Harris Bank

Using Oracle Governance, Risk,

and Compliance Manager has

helped us ocus on signifcant

risks and true key controls.

This has improved our ability

to resolve compliance issuesin a timely ashion.

Danny Waxenberg

Assistant Vice President or

Internal Controls

Unum

Now more than ever, enterprises must achieve

strategic objectives while operating within

prescribed boundaries. Oracle makes this

possible with the most complete platorm

or governance, risk, and compliance.

In the atermath o wellpublicized ailures o

corporate control, governments and indepen-

dent standards bodies are imposing stringent

governance, risk, and compliance (GRC)

requirements that cover nancial reporting,

data security, records retention, risk manage-

ment, and more.

No one expects that this is the end o new

industry and legislative requirements, so

business executives continue to struggle

with questions such as: How can we stay on

top o regulatory demands while controlling

costs? Can we better manage risk to prevent

business and compliance ailures? How

do we achieve better perormance while

ensuring accountability and integrity?

A Comprehensive Platform for GRC

To help executives meet these challenges,

Oracle delivers a comprehensive GRC

platorm that works across heterogeneous

environments. Oracle combines risk intel-

ligence and analytics, endtoend support or

crossindustry and industryspecic GRC

processes, and bestinclass controls enorce-

ment and data security, so you can

Leverage a centralized repository ofGRC information. Built on the industrys

leading content management solution, only

Oracle unies disparate silos o GRC data

across multiple mandates, rameworks,

systems, and lines o business to deliver

insight into riskadjusted perormance.

Manage GRC processes across the enter-prise. Mitigate risk across areas such

as nancial assurance, workorce training,

and IT governance, and in industryspecic

areas such as credit risk management,

antimoney laundering, and pharmaceutical

quality assurance.

Protect critical information assets at alllevels. Core security and privacy controls,

along with automated enorcement o proper

user access and authorization policies, keep

inormation sae across all IT resources

applications, middleware, and databases.

7/28/2019 Bussines Brief

2/2

Oracle Solutions or Governance, Risk, and Compliance

Oracle Governance, Risk, and Compliance

Manager has been positioned in the

Leaders quadrant in Gartners 2008

Enterprise Governance, Risk and

Compliance Platorms Magic Quadrant.

(Gartner, Inc., Magic Quadrant for Enterprise Governance,Risk and Compliance Platforms, June 30, 2008.)

Simplify GRC and Reduce Costs

To keep costs down, you need a compre-

hensive, integrated approach to governance,

risk, and compliance. The Oracle GRC

platorm provides a common oundation or

managing risk and compliance documenta-

tion, assessment, analysis, and certication,so organizations can reduce costs without

compromising compliance. With Oracles

GRC platorm, you can

Streamline compliance eorts by managingmultiple regulatory requirements with one

system. Compliance activities are baselined

against documented policies and best

practice control rameworks such as COBIT

and COSO.

Replace laborintensive and errorprone

manual tasks with automated GRC processmanagement and controls monitoring.

Bestpractice control libraries get organiza-

tions up and running quickly.

Minimize time spent on alse positives byenorcing controls in the context o business

operations. An advanced policy engine

embeds controls directly into business

activities, without impacting the eciency

o daily operations.

Safeguard Brand and Reputation

The damage to an organization and the

loss o condence that result rom breaches

in inormation security can be devastating.

Protecting inormation assets is a critical

part o a coherent GRC strategy. With

Oracle GRC solutions, organizations can

Automate segregation o duties (SOD)enorcement across enterprise applications,

custom solutions, and database systems.

Edgetocore coverage o access controls

prevents SOD conficts rom arising and

applies leastprivilege principles to protect

sensitive inormation.

Ensure compliant user provisioning acrossall systems with integrated identity and

application controls management. The cen-

tral provisioning o user access, combined

with negrained authorization policies,

deters raudulent conduct.

Enorce bestpractice setups and reduceconguration drit. Systems are auto-

matically monitored to ensure that critical

setups ollow standard policy and change

management procedures.

Transform Uncertainty into Opportunity

Eective governance, risk, and compliance

management, like good brakes, allows an

organization to speed ahead with the

condence that it will saely negotiate each

turn on its chosen course.

By presenting a holistic picture o enterprise

risks and controls, Oracle GRC solutions

help organizations transorm regulatory

compliance projects into opportunities to

create competitive advantage. With Oracle

GRC solutions, your business can

Standardize the process o identiying,measuring, and responding to operational

risk. Powerul content and process man-

agement capabilities are combined with

a reporting and intelligence system or

eective risk oversight.

Highlight key risk and perormance indica-tors via executivelevel dashboards that can

drill down to detailed evidence in source

systems. Hundreds o predelivered reports

enable organizations to analyze and mitigaterisk in a holistic yet simple manner.

Determine root causes and accountabilityor risk by tracking loss incidents and own-

ership. Business process automation provides

realtime event escalation and streamlined

remediation o issues.

True Cross-Enterprise Support

Recognizing that GRC requirements must

address a broad range o accountabilities,

Oracle delivers a standardsbased, service

oriented GRC platorm that works across

diverse applications and system environments

Whether your organization leverages one o

the Oracle Applications product lines or uses

SAP, legacy, or custom applications, Oracle

GRC solutions uniy your people, processes

and technology in the pursuit o perormance

with integrity.

CONTACT US

To learn more, call +1.800.ORACLE1

or visit oracle.com/solutions/grc

Outside North America, visit oracle.com/corporate/contact

to fnd the phone number or your local Oracle ofce.

C16392

Copyright 2008, Oracle and/or its afliates. All rights reserved. Oracle is a registered trademark o Oracle Corporation and/or its afliates. Other names may be trademarks o their respective owners. 0801638