tiero - Fotolia

News Stay informed about the latest enterprise technology news and product updates.

2015 might be a big year for these GRC technologies

This could be a big year for GRC technologies. #GRCChat-ters predict which tools and processes will continue their upward trend in 2015 and which will wane.

Governance, risk and compliance (GRC) technologies are constantly in flux, making it tough to predict which innovations and strategies will rise and fall in the coming months or years -- but that doesn't stop IT experts from taking their best shot at it.

During the 2014 Gartner Symposium/ITxpo, Gartner Research Inc. released its list of the top 10 strategic technology trends for 2015. In the list, Gartner predicted that analytics will take center stage this year as more data is generated and analyzed, while "risk-based security and self-protection" will flourish due to increased security awareness and improved risk assessment tools.

What GRC technologies do you think will rise and fall in 2015? In the latest #GRCChat, SearchCompliance editors and followers shared which tools they think will gain more widespread usage in 2015 and which will fade into obscurity.

As mandates and IT threats evolve, compliance and risk management processes can be a significant burden on company resources. As discussed in a previous #GRCChat, automation can save money and time, as well as reduce data management errors. Making the switch to an automated compliance process can also change the nature of GRC jobs and skill sets, which is an important factor in automation's evolution.

According to SearchCompliance editors Rachel Lebeaux and Benjamin Cole, we may be seeing a lot more automated GRC technologies and processes in the workplace in 2015:

Cole also senses more cloud concerns and privacy-related compliance regulations are in store for 2015, which align with an increased focus on security:

Another technology of interest to our #GRCChat-ters is a honeypot, a computer system designed to "trap" anybody who attempts to breach another computer system. With security on everyone's mind in the wake of several high-profile breaches, more companies are feeling pressure to adopt a more active cyberdefense strategy to protect their data -- making honeypots an increasingly more attractive option. However, honeypots aren't without their share of dangers, making their future in the enterprise somewhat uncertain.

Nicole Laskowski, SearchCIO's senior news writer, inquired whether honeypots would stick in 2015, triggering this unanimous response:

Big data analytics has a role to play in GRC activities as well. It requires well-planned analytical processes and people with the talent and skills needed to leverage the technologies, but -- if done correctly -- the payoff is often worth the extensive preparation. "Analytics will become deeply, but invisibly embedded everywhere," said David Cearley, a Gartner vice president and fellow, at a recent conference.

#GRCChat participants predicted a notable rise in big data analytics for GRC in 2015, especially in regards to predictive analysis and security management:

What GRC technologies do you think will rise and fall in 2015? Sound off in the comments section below.

Next Steps

For more from this end-of-year #GRCChat, check out participants' biggest GRC regrets of 2014, as well as their top GRC resolutions and predictions for 2015. Then head over to SearchCIO for more of Gartner's top 10 strategic technology trends for 2015. And don't forget to check out SearchCompliance's 2016 list of GRC events for IT leaders.

Dig Deeper on Managing governance and compliance

Join the conversation


Send me notifications when other members comment.

Please create a username to comment.

Which GRC technologies are you investing in this year?
We’ve been slowly implementing different modules of ServiceNow, including Change, Release, Configuration, Problem, and Incident Management. Our plans are to invest in the implementation of the IT GRC module this year to allow us better align the different process areas and pull them into a coherent whole.
Yes mcorum I have been hearing about that strategy a lot lately- combining the use of several tools/technologies to ensure top down, organization wide GRC. I still don't think there is any one tool/tech out there that will fill every organization's GRC needs because every company's needs and capabilities will be unique.