Governance, risk and compliance (GRC) technologies are constantly in flux, making it tough to predict which innovations...
and strategies will rise and fall in the coming months or years -- but that doesn't stop IT experts from taking their best shot at it.
During the 2014 Gartner Symposium/ITxpo, Gartner Research Inc. released its list of the top 10 strategic technology trends for 2015. In the list, Gartner predicted that analytics will take center stage this year as more data is generated and analyzed, while "risk-based security and self-protection" will flourish due to increased security awareness and improved risk assessment tools.
What GRC technologies do you think will rise and fall in 2015? In the latest #GRCChat, SearchCompliance editors and followers shared which tools they think will gain more widespread usage in 2015 and which will fade into obscurity.
As mandates and IT threats evolve, compliance and risk management processes can be a significant burden on company resources. As discussed in a previous #GRCChat, automation can save money and time, as well as reduce data management errors. Making the switch to an automated compliance process can also change the nature of GRC jobs and skill sets, which is an important factor in automation's evolution.
According to SearchCompliance editors Rachel Lebeaux and Benjamin Cole, we may be seeing a lot more automated GRC technologies and processes in the workplace in 2015:
A4 More automated GRC processes too- GRC data management is complicated with many redundancies- can consolidate via automation #GRCchat— Ben Cole (@BenjaminCole11) December 18, 2014
Cole also senses more cloud concerns and privacy-related compliance regulations are in store for 2015, which align with an increased focus on security:
A4 Businesses may become more wary about cloud use due to security concerns, unless providers start to address them #GRCchat— Ben Cole (@BenjaminCole11) December 18, 2014
A4 Privacy will also continue to be a huge issue, especially as breaches cont and more Privacy-related comp regs pop up #GRCchat— Ben Cole (@BenjaminCole11) December 18, 2014
Another technology of interest to our #GRCChat-ters is a honeypot, a computer system designed to "trap" anybody who attempts to breach another computer system. With security on everyone's mind in the wake of several high-profile breaches, more companies are feeling pressure to adopt a more active cyberdefense strategy to protect their data -- making honeypots an increasingly more attractive option. However, honeypots aren't without their share of dangers, making their future in the enterprise somewhat uncertain.
Nicole Laskowski, SearchCIO's senior news writer, inquired whether honeypots would stick in 2015, triggering this unanimous response:
What about honeypots? Will they go or will they stay in 2015? #GRCchat— Nicole Laskowski (@TT_Nicole) December 18, 2014
Big data analytics has a role to play in GRC activities as well. It requires well-planned analytical processes and people with the talent and skills needed to leverage the technologies, but -- if done correctly -- the payoff is often worth the extensive preparation. "Analytics will become deeply, but invisibly embedded everywhere," said David Cearley, a Gartner vice president and fellow, at a recent conference.
#GRCChat participants predicted a notable rise in big data analytics for GRC in 2015, especially in regards to predictive analysis and security management:
A4 As mentioned more use of big data analytics for GRC- rather than being overburdened with info use it to advantage if poss #GRCChat— Ben Cole (@BenjaminCole11) December 18, 2014
A4 I expect predictive analytics, especially for fraud detection, will continue to gain prominence in 2015. #GRCchat— Nicole Laskowski (@TT_Nicole) December 18, 2014
A4: Better analytics and more predictive response to events. #grcchat— Forvalaka41 (@Forvalaka41) December 18, 2014
What GRC technologies do you think will rise and fall in 2015? Sound off in the comments section below.
For more from this end-of-year #GRCChat, check out participants' biggest GRC regrets of 2014, as well as their top GRC resolutions and predictions for 2015. Then head over to SearchCIO for more of Gartner's top 10 strategic technology trends for 2015. And don't forget to check out SearchCompliance's 2016 list of GRC events for IT leaders.