Quotidien Fintech, Blocktech, DeFi, Blockchain

Jeudi 29 Septembre 2011

GRC software à la carte

You enter the GRC software restaurant and on the table is a prix fixe menu. For 250,000 units you can acquire a four course meal (no substitutions allowed).

Norman Marks
Norman Marks
This is the “eGRC special”:
Appetizer: Policy management
Salad: Audit management
Entrée: Risk management
Dessert: Compliance management

250,000 units is a lot to spend and you are not sure these are the dishes that you want (even though 250,000 is within your budget). So you ask for the full menu. Here are some of the items you see:
Anti-money laundering software – 40,000
Audit management – 45,000
Compliance management – 70,000
Continuous monitoring – 50,000
Data analytics – 40,000
Disclosure and notes management – 60,000
Enterprise application security – 90,000
Computer forensics – 45,000
Investigation management – 25,000
Legal case management – 35,000
Performance management – 60,000
Policy management – 40,000
Risk management – 100,000
Spend management – 45,000
Strategy management – 80,000

You notice that there is only a 5,000 unit discount for the total package, compared to picking them off the menu. You also notice that there are several other dishes that might meet your current appetite better than the “eGRC special”.

So, what would you buy: the prix fixe or something á la carte?

If the first restaurant you visited only had the items on the prix fixe menu, would you eat there or go next door to a software vendor that had a greater selection?

Norman Marks, CPA, is vice president, governance, risk, and compliance for SAP's BusinessObjects division, and has been a chief audit executive of major global corporations for more than 15 years. He is the contributing editor to Internal Auditor’s “Governance Perspectives” column.

Finyear: latest news, derniers articles

Inscription à la newsletter

Flux RSS