SlideShare ist ein Scribd-Unternehmen logo

Compliane software-solutions

MetricStream Inc
MetricStream Inc
1 von 2
Downloaden Sie, um offline zu lesen
CASE STUDY MetricStream LEVERAGING TECHNOLOGY TO RATIONALIZE AND STREAMLINE COMPLIANCE EFFORTS Overview The Financial Institution is one of the world’s largest electronic stock market. It is home to companies that are leaders across all areas of business including technology, retail, communications, financial services, transportation, media and biotechnology. Being a stock market as well as a listed company by itself, the Institution plays the role of a regulator as well as a regulated company. It has a myriad of processes and systems to manage and dissemi- nate detailed and accurate information regarding governance, risk and compliance aspect of its own operations as well as its listed companies to ensure the integrity of the marketplace. Regulations and mandates that affect its business operations include NASD guidelines, SEC regulations, SOX compli- ance requirements, various disclosure requirements and many other governance, risk, compliance, ethics, business conduct related policies and procedures. Customer ONE OF THE WORLD’S LARGEST ELECTRONIC STOCK MARKET Challenge With continued growth in their business and recent acquisitions, the Institution needed to adopt a Benefits comprehensive approach to managing its governance, risk and compliance initiatives through a single system that supported a federated organizational structure and leverage technology for sustainability, By automating the compliance management pro- consistency, efficiency and transparency across this organizational architecture. cesses the Institution has dramatically reduced the time spent by staff members, line managers, Their existing system for managing documentation, risk, controls and reporting of internal controls had and senior managers on risk and compliance related a number of limitations including: activities. • There was no easy way to share risks and controls between processes in the system. As a result, Employees are able to carry out team activities in a the compliance teams ended up having to define a number of redundant controls in their existing productive manner with the collaborative environ- system. This redundancy made change management very challenging. ment that MetricStream provides. • The system lacked document management and change reporting capabilities. Although current MetricStream enforces a consistent process across versions were readily available, comparison of controls and documents to prior periods was the enterprise, eliminating any deviations and error completely manual and it was difficult to implement strict access control or deploy a streamlined eliminating the cost and time associated with repeated processes and multiple checks. process for change management. With the entire compliance process streamlined • The system lacked issue management capabilities. Issues were tracked in a separate MS Access and automated with the MetricStream solution, the database, increasing the risk of it falling through the cracks. Institution can better utilize its resources. • The system lacked role-based views, making it difficult for stakeholders such as executives to use Comprehensive visibility provided by MetricStream the system. has lowered the risk of non-compliance and execu- tives can be assured of higher customer and investor confidence. • There was no provision for operational testing leading to a significant manual activity and paper- based documentation. These limitations significantly increased the overheads on the Institution’s compliance and risk management team responsible for critical requirements such as SOX. The team realized that they needed to replace their current system with a next-generation solution that provided a comprehensive platform for design, test, reporting, disclosure and remediation of internal controls to support effective risk and compliance management. Solution After an exhaustive evaluation of over a dozen solutions the Institution saw the distinct advantages of MetricStream’s current offerings and product vision. In stead of focusing on a single compliance issue, MetricStream addressed governance, risk and compliance with a broad, multi-regulatory platform that solved the Institution’s current business problems as well as had the capability to be easily extended to address newer requirements that my arise in the future. The Institution also saw the tremendous value offered by MetricStream’s ComplinaceOnline.com to enable effective implementation and adoption of compliance programs through online training, alerts, vertical search, discussion forums, and best practices library services. The combination of software, content and community was the right solution for an environment where the regulations and require- ments are continuously changing and keeping pace with them is essential to reducing the overall risk.
MetricStream The Institution implemented MetricStream to completely replace their existing risk and compliance system by mapping all business flows to the MetricStream system, creating a baseline configura- tion for validation and training, configuring the solution to support reporting needs and migrating the process hierarchy and other critical data from the existing environment into MetricStream solution. The MetricStream solution has provided numerous benefits to the Institution. It has enabled the Insti- tution to share documentation of risks and controls across processes, allowing them to rationalize and reduce their documented controls from 1,400 to about 500 controls. This has greatly simplified their change management process. “We are extremely pleased with the ease with which we were able to go live with the MetricStream solution. Their professional services organization worked very closely with the Institution to configure the solution to map to our business process flows in a very short amount of time. It speaks volumes about the configurability and richness of their solution” says SOX Program Manager. MetricStream’s role-based views have enabled the Institution to make the system available to a wide band of users including external auditors. In fact, the Institution is now able to provide an External Auditor portal with binder type reports and real-time read-only access to for design documentation. The issue management process is automated and streamlined to provide complete visibility into the entire lifecycle of issues arising out of testing operational controls – from identification through root cause analysis and remediation. The process documentation is stored in a MetricStream’s integrated document repository (DMS). The documents can be retrieved for making any changes and checked back in only by authorized users. The system also supports a review management process for such documents, with easy status tracking. The ease of integration provided by the MetricStream platform has allowed the Institution to integrate the solution with the PeopleSoft ERP system for chart of counts and employee information. For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.

Empfohlen

Sarbanes oxley compliance
Sarbanes oxley complianceSarbanes oxley compliance
Sarbanes oxley complianceMetricStream Inc
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS MetricStream Inc
 
Renovo Ce It White Paper Ism
Renovo Ce It White Paper IsmRenovo Ce It White Paper Ism
Renovo Ce It White Paper IsmAnne Granum
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance MetricStream Inc
 
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Management
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure ManagementDCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Management
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Managementjpjobard
 
Understanding the impact of Enterprise Asset Management
Understanding the impact of Enterprise Asset ManagementUnderstanding the impact of Enterprise Asset Management
Understanding the impact of Enterprise Asset ManagementAlok Chander
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analyticsprosenzw69
 

Empfohlen

Sarbanes oxley compliance
Sarbanes oxley complianceSarbanes oxley compliance
Sarbanes oxley complianceMetricStream Inc
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS MetricStream Inc
 
Renovo Ce It White Paper Ism
Renovo Ce It White Paper IsmRenovo Ce It White Paper Ism
Renovo Ce It White Paper IsmAnne Granum
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance MetricStream Inc
 
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Management
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure ManagementDCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Management
DCIM DATACENTER INFRASTRUCTURE MANAGEMENT Infrastructure Managementjpjobard
 
Understanding the impact of Enterprise Asset Management
Understanding the impact of Enterprise Asset ManagementUnderstanding the impact of Enterprise Asset Management
Understanding the impact of Enterprise Asset ManagementAlok Chander
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analyticsprosenzw69
 
Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream MetricStream Inc
 
VMS and ERP System Integration
VMS and ERP System Integration VMS and ERP System Integration
VMS and ERP System Integration Doug Lubin
 
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, OniquaStandardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, OniquaEnergy Network marcus evans
 
Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0Aladdin Dandis
 
Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0Aladdin Dandis
 
Risk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application ServicesRisk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application ServicesEric Bauer
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyCovance
 
Barqa Edinburgh Final
Barqa Edinburgh FinalBarqa Edinburgh Final
Barqa Edinburgh FinalDavid Stephenson
 
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】Jerimi Soma
 
CIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis FinalCIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis FinalClaire Louis
 
Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0Aladdin Dandis
 
The Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management SystemThe Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management SystemMichael Douglas
 
SecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaSSecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaSxmeteorite
 
Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry MetricStream Inc
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control MetricStream Inc
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-ormMetricStream Inc
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...MetricStream Inc
 
Quality Management System
Quality Management System Quality Management System
Quality Management System MetricStream Inc
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management MetricStream Inc
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management MetricStream Inc
 

Weitere ähnliche Inhalte

Was ist angesagt?

Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream MetricStream Inc
 
VMS and ERP System Integration
VMS and ERP System Integration VMS and ERP System Integration
VMS and ERP System Integration Doug Lubin
 
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, OniquaStandardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, OniquaEnergy Network marcus evans
 
Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0Aladdin Dandis
 
Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0Aladdin Dandis
 
Risk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application ServicesRisk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application ServicesEric Bauer
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyCovance
 
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】Jerimi Soma
 
CIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis FinalCIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis FinalClaire Louis
 
Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0Aladdin Dandis
 
The Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management SystemThe Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management SystemMichael Douglas
 
SecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaSSecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaSxmeteorite
 

Was ist angesagt? (13)

Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream
 
VMS and ERP System Integration
VMS and ERP System Integration VMS and ERP System Integration
VMS and ERP System Integration
 
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, OniquaStandardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
Standardizing Preventive Maintenance in the Energy Sector - Andy Hill, Oniqua
 
Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0Module 1 bc and dr fundamentals student slides ver 1.0
Module 1 bc and dr fundamentals student slides ver 1.0
 
Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0Module 2 information security risk management student slides ver 1.0
Module 2 information security risk management student slides ver 1.0
 
Risk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application ServicesRisk Thinking for Cloud-Based Application Services
Risk Thinking for Cloud-Based Application Services
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug Safety
 
Barqa Edinburgh Final
Barqa Edinburgh FinalBarqa Edinburgh Final
Barqa Edinburgh Final
 
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
Business Continuity (ISO22301) is relevant to PCI DSS v3.2.1 【Continuous Study】
 
CIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis FinalCIA Quebec 11 Sept 2015 Presentation C Louis Final
CIA Quebec 11 Sept 2015 Presentation C Louis Final
 
Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0Module 3 business continuity student slides ver 1.0
Module 3 business continuity student slides ver 1.0
 
The Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management SystemThe Business Case for the Enterprise Environmental Liability Management System
The Business Case for the Enterprise Environmental Liability Management System
 
SecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaSSecureGRC - Cloud based SaaS
SecureGRC - Cloud based SaaS
 

Ähnlich wie Compliane software-solutions

Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry MetricStream Inc
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control MetricStream Inc
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-ormMetricStream Inc
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...MetricStream Inc
 
Quality Management System
Quality Management System Quality Management System
Quality Management System MetricStream Inc
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management MetricStream Inc
 
Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-managementMetricStream Inc
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-auditMetricStream Inc
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solutionMetricStream Inc
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions MetricStream Inc
 
Smart Grid Operational Services Supply Chain Fact Sheet
Smart Grid Operational Services Supply Chain Fact SheetSmart Grid Operational Services Supply Chain Fact Sheet
Smart Grid Operational Services Supply Chain Fact SheetGord Reynolds
 
Accenture Plant Asset Solutions Brochure
Accenture Plant Asset Solutions BrochureAccenture Plant Asset Solutions Brochure
Accenture Plant Asset Solutions BrochureSilas O'Dea
 

Ähnlich wie Compliane software-solutions (20)

Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-orm
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
 
Quality Management System
Quality Management System Quality Management System
Quality Management System
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management
 
Internal Audit Solution
Internal Audit Solution Internal Audit Solution
Internal Audit Solution
 
Agiliance Risk Vision
Agiliance Risk VisionAgiliance Risk Vision
Agiliance Risk Vision
 
Agiliance Risk Vision
Agiliance Risk VisionAgiliance Risk Vision
Agiliance Risk Vision
 
Audit solution airline
Audit solution airlineAudit solution airline
Audit solution airline
 
Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-management
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-audit
 
Msfairchildcasestudy
MsfairchildcasestudyMsfairchildcasestudy
Msfairchildcasestudy
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solution
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions
 
Smart Grid Operational Services Supply Chain Fact Sheet
Smart Grid Operational Services Supply Chain Fact SheetSmart Grid Operational Services Supply Chain Fact Sheet
Smart Grid Operational Services Supply Chain Fact Sheet
 
Accenture Plant Asset Solutions Brochure
Accenture Plant Asset Solutions BrochureAccenture Plant Asset Solutions Brochure
Accenture Plant Asset Solutions Brochure
 

Mehr von MetricStream Inc

MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream Inc
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA MetricStream Inc
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-complianceMetricStream Inc
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry MetricStream Inc
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance complianceMetricStream Inc
 

Mehr von MetricStream Inc (7)

MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-compliance
 
NERC Compliance Solution
NERC Compliance Solution NERC Compliance Solution
NERC Compliance Solution
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance compliance
 
Iso9000 compliance
Iso9000 complianceIso9000 compliance
Iso9000 compliance
 

Compliane software-solutions

  • 1. CASE STUDY MetricStream LEVERAGING TECHNOLOGY TO RATIONALIZE AND STREAMLINE COMPLIANCE EFFORTS Overview The Financial Institution is one of the world’s largest electronic stock market. It is home to companies that are leaders across all areas of business including technology, retail, communications, financial services, transportation, media and biotechnology. Being a stock market as well as a listed company by itself, the Institution plays the role of a regulator as well as a regulated company. It has a myriad of processes and systems to manage and dissemi- nate detailed and accurate information regarding governance, risk and compliance aspect of its own operations as well as its listed companies to ensure the integrity of the marketplace. Regulations and mandates that affect its business operations include NASD guidelines, SEC regulations, SOX compli- ance requirements, various disclosure requirements and many other governance, risk, compliance, ethics, business conduct related policies and procedures. Customer ONE OF THE WORLD’S LARGEST ELECTRONIC STOCK MARKET Challenge With continued growth in their business and recent acquisitions, the Institution needed to adopt a Benefits comprehensive approach to managing its governance, risk and compliance initiatives through a single system that supported a federated organizational structure and leverage technology for sustainability, By automating the compliance management pro- consistency, efficiency and transparency across this organizational architecture. cesses the Institution has dramatically reduced the time spent by staff members, line managers, Their existing system for managing documentation, risk, controls and reporting of internal controls had and senior managers on risk and compliance related a number of limitations including: activities. • There was no easy way to share risks and controls between processes in the system. As a result, Employees are able to carry out team activities in a the compliance teams ended up having to define a number of redundant controls in their existing productive manner with the collaborative environ- system. This redundancy made change management very challenging. ment that MetricStream provides. • The system lacked document management and change reporting capabilities. Although current MetricStream enforces a consistent process across versions were readily available, comparison of controls and documents to prior periods was the enterprise, eliminating any deviations and error completely manual and it was difficult to implement strict access control or deploy a streamlined eliminating the cost and time associated with repeated processes and multiple checks. process for change management. With the entire compliance process streamlined • The system lacked issue management capabilities. Issues were tracked in a separate MS Access and automated with the MetricStream solution, the database, increasing the risk of it falling through the cracks. Institution can better utilize its resources. • The system lacked role-based views, making it difficult for stakeholders such as executives to use Comprehensive visibility provided by MetricStream the system. has lowered the risk of non-compliance and execu- tives can be assured of higher customer and investor confidence. • There was no provision for operational testing leading to a significant manual activity and paper- based documentation. These limitations significantly increased the overheads on the Institution’s compliance and risk management team responsible for critical requirements such as SOX. The team realized that they needed to replace their current system with a next-generation solution that provided a comprehensive platform for design, test, reporting, disclosure and remediation of internal controls to support effective risk and compliance management. Solution After an exhaustive evaluation of over a dozen solutions the Institution saw the distinct advantages of MetricStream’s current offerings and product vision. In stead of focusing on a single compliance issue, MetricStream addressed governance, risk and compliance with a broad, multi-regulatory platform that solved the Institution’s current business problems as well as had the capability to be easily extended to address newer requirements that my arise in the future. The Institution also saw the tremendous value offered by MetricStream’s ComplinaceOnline.com to enable effective implementation and adoption of compliance programs through online training, alerts, vertical search, discussion forums, and best practices library services. The combination of software, content and community was the right solution for an environment where the regulations and require- ments are continuously changing and keeping pace with them is essential to reducing the overall risk.
  • 2. MetricStream The Institution implemented MetricStream to completely replace their existing risk and compliance system by mapping all business flows to the MetricStream system, creating a baseline configura- tion for validation and training, configuring the solution to support reporting needs and migrating the process hierarchy and other critical data from the existing environment into MetricStream solution. The MetricStream solution has provided numerous benefits to the Institution. It has enabled the Insti- tution to share documentation of risks and controls across processes, allowing them to rationalize and reduce their documented controls from 1,400 to about 500 controls. This has greatly simplified their change management process. “We are extremely pleased with the ease with which we were able to go live with the MetricStream solution. Their professional services organization worked very closely with the Institution to configure the solution to map to our business process flows in a very short amount of time. It speaks volumes about the configurability and richness of their solution” says SOX Program Manager. MetricStream’s role-based views have enabled the Institution to make the system available to a wide band of users including external auditors. In fact, the Institution is now able to provide an External Auditor portal with binder type reports and real-time read-only access to for design documentation. The issue management process is automated and streamlined to provide complete visibility into the entire lifecycle of issues arising out of testing operational controls – from identification through root cause analysis and remediation. The process documentation is stored in a MetricStream’s integrated document repository (DMS). The documents can be retrieved for making any changes and checked back in only by authorized users. The system also supports a review management process for such documents, with easy status tracking. The ease of integration provided by the MetricStream platform has allowed the Institution to integrate the solution with the PeopleSoft ERP system for chart of counts and employee information. For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.