MetricStream provides enterprise and cloud Apps for Governance, Risk and Compliance (GRC) for modern and digital enterprises.
MetricStream’s market-leading Apps for GRC enable organizations to strengthen risk management, regulatory compliance, vendor governance, and quality management while driving business performance. Their simple and modular approach to GRC is transforming risk management in a business environment that is increasingly mobile, social, global, and virtual.
Consistently rated as a market leader by leading analysts, MetricStream has received several awards and recognitions for product innovation and customer success.
MetricStream is headquartered in Palo Alto, California, and has offices across the globe.
There has been a dramatic increase in the number of compliance and regulatory requirements for the IT function in organizations. With international IT regulations such as COSO, COBIT, ITIL, ISO 27001/27002, PCI-DSS, FISMA, and NIST 800-53, and an evolving cybersecurity threat landscape, CISOs and CIOs are under constant pressure to manage IT compliance in a more efficient and integrated manner.
The MetricStream IT Compliance Management App simplifies and streamlines the compliance management lifecycle across IT enterprises. The app allows you to adopt a centralized approach to IT compliance management, and provides top-level visibility into compliance processes across geographies, business units, and functional departments. The app also enables you to stay informed about the key changes and updates across IT regulations by integrating with authoritative sources. Additionally, the app standardizes controls across multiple IT regulations based on the industry-standard UCF library.
The MetricStream IT Compliance Management App provides a common framework to manage and monitor compliance with a range of IT regulations and standards. The app scales across the enterprise, streamlining and automating IT compliance workflows, while consolidating compliance and control data into a central repository. The app also integrates with the Unified Compliance Framework (UCF), enabling enterprises to map 9,300+ IT control statements to 1,200+ regulations.
To examine all these IT regulatory and compliance requirements simultaneously, it is imperative to have a comprehensive process in place. It helps you select those regulations that are applicable to your organization, assess the risks, apply appropriate controls, verify that the controls are in place, and audit the controls for their ongoing effectiveness.
The MetricStream IT Compliance Management App provides a centralized system to manage and track compliance with a range of IT regulations and standards. The app scales across the enterprise, streamlining and automating IT compliance management workflows, while consolidating compliance data in a central repository for optimal visibility.
To address the above challenges and unify IT compliance initiatives across the organization, MetricStream has partnered with Network Frontiers to deliver the UCF Common Controls Hub’s (CCH) integration with the market-leading MetricStream IT Compliance Management App. UCF is the largest and the only industry-vetted compliance database that maps and harmonizes more than 9,300 IT control statements to more than 1,200 regulations, standards, and frameworks.
The Common Controls Hub connects the various criteria, policies, and lexicons of over 200,000 individual compliance mandates across over 800 laws, standards, and regulations (referred to by the UCF as authority documents) from around the world.
The MetricStream–UCF CCH API based integration allows you to access on demand content to import authority documents, citations, controls, and questions/procedures from UCF Common Controls Hub portal into MetricStream GRC library.
Operating data specific to the nature of the business can be leveraged via MetricStream modules to measure their design and reference effectiveness
Reference data is benchmark data that is specified by the UCF Common Controls Hub. You can upload your existing operating data onto the MetricStream solution to be mapped to reference data (from the UCF Common Controls Hub). This helps you measure compliance gaps for any given area and achieve continuous improvement over a period of time.
Reporting needs vary widely among different levels of an organization. With the Common Controls Hub Content, you can get precise reports with concise formats and thorough in-detail reporting capabilities to address specific areas of compliance.
The MetricStream IT Compliance Management App, in collaboration with UCF Common Controls Hub, offers you the flowing benefits: