Press Release
Brabeion Software Cited as a Leader in IT Risk and Compliance
Software Report by Independent Research Firm
RESTON, VA — July 1, 2008 — Brabeion Software, a leader in IT Governance, Risk and Compliance (IT GRC) Management, today announced that the company is cited as a leader by Forrester Research, Inc. in the June 2008 Forrester Wave™: IT Risk and Compliance Software, Q2 2008. Brabeion was among the select eight companies that Forrester invited to participate in the report. Brabeion (along with 2 other vendors) was recognized for "(establishing) early IT risk and compliance leadership thanks to their workflow, risk, and compliance management capabilities and product strategy focus."
"For organizations wanting to jump-start their IT compliance programs with detailed content or those looking to augment existing IT policies and standards for compliance purposes, Brabeion is the best place to start," writes Senior Analyst Marc Othersen in the report. "Backed by rock-solid content from PricewaterhouseCoopers, Brabeion offers best-of-breed policies, standards, and test procedures for IT controls all linked to an enormous variety of governing sources. Brabeion's strongest capabilities include classification and mapping of risk events to business risks, the depth and breadth of IT controls content, and the flexibility to link IT controls to governing sources beyond laws and regulations."
"Our vision is to provide enterprises with a better way to manage IT risk, demonstrate compliance, and improve operational efficiency. Our software makes this possible by delivering the business context and insight our customers need to make more informed risk and compliance decisions," commented Julian Waits, CEO of Brabeion. "Forrester brings much needed clarity to IT risk and compliance best practices and evaluation criteria, helping enterprises prioritize their needs and advance the maturity of their IT governance, risk and compliance programs."
Forrester evaluated leading IT risk and compliance software vendors across 88 criteria through extensive product demonstrations and customer interviews. The criteria were grouped into three categories: Current offering, Strategy and Market presence. Forrester defines the discipline of IT GRC as tying together the previously disparate programs of IT governance, IT risk management, and IT compliance to establish more accountable and effective IT and IT security functions. This discipline is based on using an IT compliance program to measure control failures within an IT environment, an IT risk management program to develop and prioritize options for remediation, and an IT governance program to leverage the developed risk-based options in support of an organization's decision-making process.
About the Brabeion Polaris IT GRC Suite
Brabeion Software is the only company that offers a complete IT governance, risk and compliance management software solution and has gained public recognition over the past year by Fortune 500 companies and industry analysts alike. The Brabeion Polaris IT GRC Management Suite manages policies, automates IT control monitoring, and measures what actually occurs against what business policies, internal governance, and regulatory sources demand.
About Brabeion Software
Brabeion, the leading software provider in IT Governance, Risk and Compliance (IT GRC), helps organizations demonstrate governance, dramatically reduce risk and improve compliance while lowering costs. Brabeion's Polaris Suite is the first IT GRC solution to trace the full lifecycle of risk and compliance impacts from business and legislative requirements through to policy, implementation procedures and controls with automated audits and assessments. It is powered by comprehensive information risk and audit content developed and maintained by our team of domain experts, through strategic alliances with organizations including PricewaterhouseCoopers LLP, IT Governance Institute and others. Brabeion Polaris puts you in control of your governance, risk and compliance profile at every level and stage of your business process.
Brabeion is a member of the Open Compliance and Ethics Group Technology Council, Information Security Forum (ISF), PCI Vendors' Alliance and Oracle's GRC Vendor Alliance. For more information, visit www.brabeion.com.
Press inquiries:
Yo Delmar, Brabeion Software, tel: 866 710 8118; email: yo.delmar@brabeion.com or Leslie Kesselring, Kesselring Communications, LLC tel: 503 358 1012; email leslie@kesselring.net
Brabeion and PricewaterhouseCoopers:
Overcoming PCI Challenges
Is your organization struggling to meet PCI requirements and deadlines? Is the fear of potential fines making it difficult to run and maintain a successful program?
View Recorded Webcast »
Brabeion and Forrester Research:
Critical Steps to Automating your IT GRC Programs
The crucial need to effectively manage and mitigate increasing IT risks - coupled with the rise in government-mandated and industry-specific regulations, demand that organizations unify their governance, security, risk and compliance silos to provide a holistic view of the IT environment.
View Recorded Webcast »
OCEG and Brabeion Webinar:
Controls Based Risk Management:
From Auditable Policy to Understanding Risk
A unique approach for risk calculation utilizing a "component-based" method leveraging three pieces of information - Requirement, Standard and Control. Get a new understanding of risks from a compliance and controls perspective, enabling fuller visibility into business impacts and decision making.
View Recorded Webcast »
Rolling with the Changes:
Managing Compliance in a Continuously Evolving Industry
Financial Services companies face many obstacles due to the regulations and requirements they have to face. Learn how leading commercial and consumer finance company, CIT, has evolved their compliance programs.
View Recorded Webcast »
Brabeion in Enterprise:
Featuring: Chevron-Texaco, Brabeion, and Forrester Research analyst Michael Rasmussen. Learn how to efficiently and effectively identify controls to achieve compliance with GLBA, PCI, FFIEC, SOX and HIPAA.
View Recorded Webcast »