Governance, Risk and Compliance


Governance, Risk and Compliance (GRC)


All organizations and Government departments are increasingly depending on Information Technology (IT) to support their operations. Information Technology became backbone and life line to deliver products or provide services to customers. However, Information Technology is prone to several risks like virus attacks, intrusions, information leakages, IP violations, system failures, errors, fraud etc.  

To address technology risks, many organizations have been adopting IT governance standards and popular frameworks such as COBIT, ITIL and ISO 27001 to build information security within IT processes. Further, organizations have to re-align their IT processes to comply with several laws and regulations, such as SOX, SSAE No. 16, PCI-DSS, PA DSS, HIPAA, HL7, SANS, GLBA, etc., prescribed by governments and regulatory bodies in different countries. 

JM is uniquely placed to help organizations in providing IT GRC solutions. JM uses time tested and proven methodology to deliver the following IT Governance, Risk and Compliance (GRC) solutions: