Second Renaissance revamped a city’s Governance, Risk, and Compliance (GRC) solution from top to bottom. Prior to the engagement, the city had partially implemented Telos Xacta without any processes documented or consistently implemented. We performed a full tool analysis including budget and capabilities, and recommended tool solutions based on the customer needs.
The GRC solution was designed to establish streamlined and sustainable GRC practices with a limited workforce. Self-help tutorials and other self-help tools were created, foundational GRC processes were created, and quick-view dashboards were established for ease of management.
GRC Capabilities and Services included:
- GRC tool evaluation,
- Tailor process workflows within GRC tools,
- Process and policy creation/update,
- Information System Inventory,
- Weakness Management (POA&Ms),
- Security Authorization,
- Contingency Planning,
- Vulnerability Management, and
- Identity and Access Management.