31
FIXNIX, INC ` GRC Suite

Fix nix, inc

Embed Size (px)

DESCRIPTION

GRC Suite

Citation preview

Page 1: Fix nix, inc

FIXNIX, INC G̀RC Suite

Page 2: Fix nix, inc

FixNix aims to develop & manage GRC leveraging latest technologies that transforms the lives of the people.

Vision

Page 3: Fix nix, inc

Invent simple and better way of doing things.

Deliver customer delight.

Establish employee friendly workplace.

Pursue excellence in everything we do.

Mission1

2

3

4

Page 4: Fix nix, inc

Technologies forEnterprises Future

Page 5: Fix nix, inc

GRC MARKET ANALYSIS

Page 6: Fix nix, inc

GRC TOOL USERS

3%20%28%

6%

7%12%24%

51% were manager level and above

49% were director level and above

Other

Professionals

Managers

Executives

Senior VP

VP

Director

Page 7: Fix nix, inc

ALIGNMENT OF TECHNOLOGY WITH GRC

NEEDS• Aligned27%• Unaligned70%• Unsure3%

• Regulatory change in double in the past five years

• Agile dynamic GRC information and technology architecture is need

• Integrated system with content feeds, advanced analytics and distributed through out the enterprise.

• Impacts on organization’s strategy, performance, objectives and integrity

Page 8: Fix nix, inc

ORGANIZATIONS SPENDING FOR CURRENT GRC TOOL.

• Increased spending64%

• Decreased Spending14%

• No change in spending22%

Page 9: Fix nix, inc

COMPETITOR ANALYSIS

Enterprise ready

Support

Functionalities

rigid

Deployment time

Usability

Complex workflow

No APIs

Page 10: Fix nix, inc

ABOUT OUR COMPETITORS

Why organizations changing from GRC solutions

40% Lack of Functionality

17% Internal move to one platform

5% Reduction in Budget

6% Lower cost competitor

16% poor customer service

Page 11: Fix nix, inc

FIXNIX GRC SUITE

Page 12: Fix nix, inc

MARKET GIANTS VS FIXNIX

Market Giants

Rigid

Deployment over head

Complex workflow

No API integration

Cost dependent support plans

FixNix

Customizable and Configurable

Zero setup time

Tailor made work flow

APIs integration possible

End to End support (24/7/365)

Page 13: Fix nix, inc

FIXNIX’S GRC SUITE

Automate every step of your GRC process

Intuitive User-Interface

Easy to adapt

Multiple device compatibility

Extensible GRC Data Model

Integration with any API

Collaborate with all teams

Pricing

Page 14: Fix nix, inc

FIXNIX GRC SUITE CAN… Increase analytics & rapid visibility

Improve consistency of information

Adaptability to regulatory changes

Reduces price

Improved performance

53%

43%

41%

39%

39%

Page 15: Fix nix, inc

FIXNIX OFFERS Automate boring task and see immediate ROI’s

Set rules for managing redundant tasks such as reports, reminder, escalations and let the tool work for you

One click status and report generation

Customizable widgets & drill down dashboards for modules

Programmable Report generation

Advance search and filters

Integrated Dashboard for the whole GRC suite

Bring down human errors drastically

Full life cycle automated with tracking, notification and closing

Compatible with all standards and regulations

Page 16: Fix nix, inc

FIXNIX GRC SUITE COMPRISES

Audit management

Risk management

Asset management

Policy management

Security incident Management

Compliance management

Fraud Management

BCM

Vendor management

Contract management

Whistle Blower

Page 17: Fix nix, inc

AUDIT MANAGEMENT TOOL Audit Plan Calendar for whole of the audits

Automated Reminders, Escalations and Notifications

Simplified Workflows

Dynamic reports and dashboards

Web 3.0 standard drag and drop widgets

Per Audit Dashboards for giving deeper insights.

Supports both Compliance and Non Compliance Audits

Inbuilt Document Management

Designed for ISO27001, HIPAA, FISMA, PCIDSS, Legal and Insurance Audits

Page 18: Fix nix, inc

RISK MANAGEMENT TOOL Transform IT risk into business-relevant risk metrics

Visualize current risk exposure and analyze historical trends.

Design mitigation plans.

Prioritize remediation efforts based on business risk rather than technical severity

Work with key business stakeholders to make consistent plans for better security practices within their business and monitor progress against these plans on an ongoing basis

Ability to define a virtual business asset based on key business processes

Page 19: Fix nix, inc

RISK MANAGEMENT TOOL

Ability to group all IT assets that are associated with a virtual business asset and apply and monitor controls for a targeted view of IT risk posture.

Ability to set risk thresholds, alerts, and notifications on dashboards to better monitor IT risk levels

Customize dashboards to illustrate different views of IT risks for multiple stakeholders including business unit leaders, information security and IT Operations managers.

Model risk reduction to facilitate evaluation of different remediation options.

Ability to monitor risk reduction over time as scheduled remediation activities take place.

Page 20: Fix nix, inc

ASSET MANAGEMENT ISO Asset Management Workflows

ITIL Asset Management

Maintain CMDB

Asset Gap Analysis and Asset Protection Platform

Tag your assets with Incidents, Risks, Vendors and Contracts.

Get reminders and notifications for activities like software expiries, computer audits and many more.

Instant calendar views for better control of your assets.

Single click bulk addition through CSV imports.

API Integrations with various asset discovery tools

Track all your assets in a single place and manage asset lifecycles

Drilldown dashboards & reports.

Define fair usage policies and communicate with asset users

Dynamic asset types

Asset discovery on LAN(Coming Soon)

Page 21: Fix nix, inc

POLICY MANAGEMENT TOOLWith FixNix Policy Management, you gain a meaningful understanding of what governs your business and can formulate policy appropriately to assist achieving corporate objectives and demonstrating compliances.

Key Benefits

Reduction in the time and effort required to create and update policies.

Mapping with standards and Control

Communication of policies are made easy.

Reports Generation

Dashboard with drill down charts

Version Management of policies are made in consistent manner

Page 22: Fix nix, inc

SECURITY INCIDENT MANAGEMENT Incident Identification and Incident Logging.

Automatic Dispatch of Incidents

Incident Diagnosis & Escalations

Incident Resolution and Recovery

Incident Closure

Control of hours spent on tickets

Satisfaction Survey

Functional SLA

Programmable reports

Service Levels Management and Service Level Agreements

Restful API that let you integrate any system with Help Desk through HTTP protocols

Page 23: Fix nix, inc

COMPLIANCE MANAGEMENT TOOL Single repository for regulations and standards

Centralized repository for compliance related organizational data

Allow for gathering of data from non technology sources such as people

Map compliance data to regulations and standards

Allow for generation of reports, export data for use with other systems within an organization.

Add compliance packages on-the-go.

Custom compliance packages reflects in Audit, Risk and other modules.

Provide management dashboards for compliance status with the ability to drill down across departments, geographies etc.

Allow for creation of custom compliance frameworks or modify existing ones

Provide reminders to people for addressing compliance related tasks in an optimal manner

Manage exceptions and activities related to compliance

Provide an exhaustive audit trail for all compliance related actions through the whole process.

Page 24: Fix nix, inc

WHISTLE-BLOWER

Anonymous reporting

Communicate directly with top management on violations, sexual harassments and frauds

Improved anonymizing algorithms makes the identity impossible to track.

Check the integrity of evidence documents with MD5 hash.

Page 25: Fix nix, inc

FRAUD MANAGEMENT Fraud Management System (FMS) that allows you to analyze data from any source{Eg: Whistle Blower}, investigate hypotheses to discover new patterns and root causes, identify fraudulent activity in real time, and manage workflows that eliminate threats.

Fraud Management Systems are used to automate the alerting and prevention of fraudulent activities and to exclude the “human factor”.

Decrease fraud losses through real-time analysis.

Improve operational efficiency by automated processes.

Improve investigator efficiency with real-time analyses and metrics.

Maximize detection efficiency by early identification and prediction of future risk.

Improve process efficiency through real-time monitoring.

Investigate, analyze and prevent fraud in ultra-high volume environments

Page 26: Fix nix, inc

BUSINESS CONTINUITY MANAGEMENT Impact analysis,

Threat analysis

Impact scenarios for Resources

Identifies the most cost-effective disaster recovery solution

Identify and manage current and future threats to your business

Take a proactive approach to minimizing the impact of incidents

Keep critical functions up and running during times of crises

Minimize downtime during incidents and improve recovery time

Demonstrate resilience to customers, suppliers and for tender requests

Simulation of Table-Top Exercise

Defines Business Plan is Implementation status

Business model implementation phase helps policy changes, material acquisitions, staffing and testing.

Page 27: Fix nix, inc

VENDOR MANAGEMENT Software enabled through the use of FixNix Vendor Manager (a feature within the tool)

Implementation of the software

Vendor risk assessment content from Shared Assessments program

IT Assessors that assist in evaluating responses from vendors/third parties from a risk assessment perspective

Ability to point the vendor to our SAAS portal and have them complete an online questionnaire.

Capability to collect evidence (policies, diagrams, etc.).

Capability to compel a vendor to answer every question or every required question.

Reminder feature with various escalation triggers.

Ability to start with up to 50 vendors in the short run and be able to scale up in future, as needed.

Ability to support a manual or automated uploading of current vendors into the tool.

Ability to start customize it based on type of vendor.

Ability to perform automated and assessor-driven risk ratings.

Page 28: Fix nix, inc

CONTRACT MANAGEMENT Manage contracts

Advanced Contract Search Engine

Import scanned signed agreement

Import of scanned old agreement

Contract Attachments

Contact Management along with Contact Template

Classification Management

Contract Repository

Contract authoring

Integration with ERP, CRP, SRM, and business intelligence tools

Track accountability with document controls

Auto generation of contracts, proposals, quotes and documentation

Automated notification system for important contract milestones or thresholds

Secure contract creation and editing

Improved customer/supplier relationships and commitment management

Full contract visibility and control.

Page 29: Fix nix, inc

OUR CLIENTS

Page 30: Fix nix, inc

OUR PARTNERS

Page 31: Fix nix, inc

CLIENTS IN INSURANCE DOMAIN