Governance, Risk, & Compliance (GRC)
Governance, Risk Management, and Compliance (GRC) is an integrated collection of practices enhancing your organization’s ability to achieve its goals and objectives while addressing uncertainty and acting with integrity.
A GRC program is key for businesses that operate in healthcare, pharmaceuticals, manufacturing, engineering, and government organizations. An effective GRC program aligns all parts of your organization through established practices and standards while enhancing cultural objectives.
Protect your business utilizing a proactive and strategic GRC program. Want to test the preparedness of your business? Click the button below to take our GRC Assessment Quiz and receive an evaluation from one of ISOutsource’s trusted advisors!
Regulations & Frameworks
Regulations and frameworks vary depending on your industry. Below is a list of core regulations and frameworks we help businesses with every single day.
EAR – Export Administration Regulations
FDIC – Federal Deposit Insurance Corp
HIPAA – Health Insurance Portability and Accountability Act
PCI – Payment Card Industry
SEC – Securities Exchange Commission
FFIEC – Federal Financial Institutions Examination Council
FINRA – Financial Industry Regulatory Authority
GDPR – General Data Protection Regulation (EU)
GLBA – Gramm-Leach-Bliley Act
ITAR – International Traffic in Arms Regulations
PIA – Privacy Impact Assessment
SOX – Sarbanes-Oxley Act
COBIT – Control Objectives for Information Technologies
COSO – Committee of Sponsoring Organizations Controls & Frameworks
DFARS – Defense Federal Acquisition Regulation Supplement
GRI – Global Reporting Initiative Standards
ITAF – Information Technology Assurance Framework
ISO27000 Family/Series – International Standards Organization
ISO38500 – International Standards Organization
HIITRUST – Health Information Trust Alliance
ITIL – Information Technology Infrastructure Library
NIST – National Institute of Standards and Technology
SANS CIS – SANS Institute, Center for Internet Security Controls
SOC 2 – System & Organization Controls