Governance, Risk & Compliance

 

 

 

 

Governance Risk & Compliance

 

Risk management is one of the key factors to successful corporate management. The combined area of governance, risk, and compliance (GRC) represents an important cornerstone for the identification, assessment and avoidance of risks. In practice, however, the three areas are often isolated from each other and are frequently based on differing methods and systems. Due to the lack of transparency and the resulting redundancies, effective risk avoidance is impossible. By implementing an integrated management system, you can intelligently combine your company’s risk management, internal control system, and compliance areas, enabling cross-departmental risk control and automatic risk minimization measures.

 

 

 

Processes as the Central Link

 

 

Prozesse als zentrales Bindeglied

 

 

Process-oriented governance, risk, and compliance links together the various departments, documents, and systems involved. This enables centralized management of risks and controls. The methods and reports used will be standardized and, as needed automated. This bundled information creates a uniform overview that is especially useful

for management. Business processes become significantly more effective and transparent, while standards become easier to enforce. With BIC GRC software, processes and resources need only be captured to the required level of detail (top-down principle), allowing a lean implementation of the program.

 

 

 


 

 

Software

 

 

Software

 

BIC GRC Software Provides You with A Wide Range of Support: 

  • Establishment of a uniform framework for governance, risk, and compliance
  • Company-wide securing of control and monitoring mechanisms
  • Uniform reporting for internal and external audits
  • Improved transparency and audit security
  • Assurance of quality standards
  • Automation and reporting functions

 

Learn More About BIC Cloud GRC

 

 

 

Risikoma├čnahmen

Automation of Control and Risk Measures

 

With BIC GRC, your processes can be automated. Error vulnerability is significantly minimized through workflow-controlled processes that follow consistent rule management. New regulations and guidelines can be implemented quickly. The automated processes are particularly well-suited for standardized evaluations and cyclical documentation of your risks and controls. Regularly-scheduled re-testing ensures that measures are continuously reviewed and, when necessary, readjusted.

 

 

 

Advantages:

 

Process Automation in the Organization

  • Risk minimization and increased efficiency through structured processes
  • Cost savings through the automation of manual activities
  • Time savings through a reduction in processing and throughput times

Compliance and Monitoring

  • Revision security through integrated audit trail
  • Process monitoring and traceability
  • Early warning system and monitoring of defined key figures
  • Adherence to quality standards through workflows

Integration into the World of Business BPM

  • Process as a link to corporate organizational governance
  • Option for continued use of process notations (e.g., BPMN 2.0)
  • Basis for continuous improvement in combination with a BPM system

 

 

 

Targeted Analysis and Early Risk Detection

 

BIC enables corporate-wide real-time monitoring of processes and offers versatile reporting functions. The program allows you to reliably monitor your risk activities and their characteristics, and to determine their efficiency. It supports the creation of key performance indicators (KPIs), statistics, and trend analyses, facilitating management decision-making that is based on sound knowledge. For management reports, important key figures are provided that show the alignment of corporate goals with corporate governance.

  • Real-time risk monitoring
  • Provision of KPIs
  • Key figures provided for management reports
  • Evaluations and trend recognition
  • Results-oriented Continuous Improvement Process (CIP)

 

 

 

GRC Legal Requirements

 

The list of legal texts that set forth the requirements for transparency in GRC and ICS is a long one. In addition, there are existing compliance requirements that dictate internal guidelines. In the event of breach of duty, some requirements go so far as to imply personal liability risk for management staff. By relying on BIC GRC, you can ensure that your company's structures and processes conform to legal requirements. The legal requirements and voluntarily-applied standards listed below must be taken into account in an internal control system.

As a result of the financial market crisis, financial sector requirements are now especially rigorous. With our proven BIC GRC program, however, you can be confident about meeting even these stringent requirements!

General Data Protection Regulation:
Your risk management program should take into account the European General Data Protection Regulation (GDPR). Contact us – we will be happy to provide you with further information.

 

International

  • Solvency II
  • Basel II
  • IFRS
  • IAS
  • BilMoG (German accounting law reform)
  • SOX
  • EU-GDPR

Germany

  • Section 91 (2) of the AktG (German Stock Corporation Act)
  • Section 289 (5) of the HGB (German Commercial Law Code)
  • Section 25a of the German Banking Act
  • GoBS (German Principles of Computer-Assisted Standardized Accounting)
  • MaRisk (German Minimum Requirement for Risk Management)
  • KonTraG (German Control and Transparency in Business Act)
  • Section 107 ff. of the German Stock Corporation Act
  • Section 317 in conjunction with Section 321 of the HGB (German Commercial Law Code)
  • IDW PS 981 (IDW Assurance Standards)

Austria

  • Section 82 of the AktG (Austrian Stock Corporation Act), in Section 22 GmbHG (Austrian Limited Liability Companies Act and in Art. 1
  • 3Section 39 of the European Company Statute

Switzerland

  • OR 728a (Swiss Code of Obligation – Audits)
  • FINMA Circular 2017/1

 

 

 

 


 

 

Services

 

Services

We will support you in implementing your BPM system – from technical installation of the BIC software right through to configuration and maintenance.

 

Learn More About Product Consulting

 

 

 


 

 

 

BIC GRC Software

BIC GRC Software Provides You with A Wide Range of Support:

 

"In our company, the initial impetus for implementing the BIC internal control system came as a result of the heightened regulatory requirements. However, thanks to the high level of process transparency it provides, along with the linking of interrelationships, BIC now also offers us tremendous added value at the management level, supplying us with relevant information that we were not able to access before."

Harald Glieden, Head of Organization M.M.Warburg

 

More About How BIC Is Used at M.M.Warburg

 

 

 


 

 

Consulting

 

GBTEC Provides You with Holistic Consulting Services

 

Our expert consultants will be happy to assist you in the individualized planning and implementation of your GRC project. Our highly-experienced team of professionals will support you in meeting compliance requirements and safeguarding your company against risk. From maturity assessments to strategic planning, operational implementation with suitability analysis, and audit support, we are at your service!

 

Ask Us Your Questions!


BIC GRC supports you with the implementation of relevant standards: 

  • ISO 9001:2008
  • ISO 9001:2015
  • ISO 14001
  • ISO 27001
  • ISO 20000
  • ISO 19011
  • ISO 31000
  • ISO TS 16949
  • IATF 16949
  • ONR 49000
  • BSI Basic Protection
  • FDA
  • Coso
  • COBIT
  • ITIL
  • ISAE 3402
  • and others

 

 

 

Explore the Many Other Areas of Application!

 

 

 

On this website, we are using Cookies. More information about how we use cookies can be taken from our Data Privacy.

Accept