June 18, 2013 | Palo Alto, California: MetricStream, a leading provider of enterprise-wide Governance, Risk, Compliance (GRC) Management solutions announced today that MetricStream IT GRC Solution received a 'Positive' rating in Gartner's report entitled 'MarketScope for IT Governance, Risk and Compliance Management'

The Gartner MarketScope report, published June 7, 2013, separates IT operations needs by terming it ‘below the line’ (includes security and IT operations support functions) and non-IT business needs as ‘above the line’ (IT centric GRC functions). The report states, “Gartner recommends that organizations seeking IT GRC solutions separate their above-the-line and below-the-line functions. Security operations requirements are likely to be met by a wide range of maturing traditional security solutions, and clients should extend their search beyond the IT GRC tools. However, above-the-line, IT-centric GRC requirements are still best addressed by the vendors in this MarketScope.” Another key observation is the potential convergence of IT GRC and E GRC functions and that this differentiation could become irrelevant in the future.

"MetricStream’s IT-GRC Solution is empowering information technology and security professionals across the world as they increasingly adopt a holistic, integrated, and enterprise-wide approach to IT risk, compliance, and security,” said Gaurav Kapoor, Chief Operating Officer at MetricStream. He continued, "We believe Gartner's 'Positive' MarketScope rating affirms our strong position in the IT GRC market. The breadth and depth of our portfolio of solutions, enables organizations to manage both IT-centric GRC functions as well as IT security and threat related challenges.”

MetricStream’s IT GRC solution integrates IT GRC processes with enterprise GRC programs, thereby eliminating silos, standardizing processes, and driving collaboration. The solution’s integration capabilities extend across an organization’s infrastructure, including information security, cloud, and application and business processes. MetricStream solutions are designed to support organizations amidst today’s dynamic and complex eco-system and business landscape by better aligning IT and security programs with business risks. Doing so provides a common framework for identifying, analyzing, and acting on IT and security threats and exposures within the context of a holistic IT risk and compliance strategy and governance program. MetricStream IT GRC Solution also integrates with a wide range of regulations, IT standards, harmonized controls, and policy content, including control frameworks such as COBIT, FFIEC, ISO 27001, and NIST, regulations such as Basel II, FISMA, GLBA, HIPAA, NERC, PCI, and SOX, as well as security configuration policies from CIS, FDCC/USGCB, and NIST.

In keeping with its tradition of innovation, MetricStream recently released their enhanced IT GRC Solution, which integrates security and threat data to provide more actionable and valuable intelligence. The new solution release provides security and risk analytics based on Big Data architecture, gathers real-time threat intelligence from social media, monitors virtualized assets in the cloud, facilitates vendor risk management, integrates with NIST and CERT, and also offers support for SCAP standards.

About the MarketScope report
Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About MetricStream

MetricStream is the independent market leader in enterprise cloud applications for governance, risk, compliance (GRC), and quality management. MetricStream apps and software solutions improve business performance by strengthening risk management, corporate governance, regulatory compliance, audit management, vendor governance, and quality management for organizations across industries, including banking and financial services, health care, life sciences, energy and utilities, consumer brands, government, technology, and manufacturing. MetricStream is headquartered in Palo Alto, California, with an operations and GRC innovation center in Bengaluru, India, and sales and operations support in 12 other cities globally.(www.metricstream.com).

Press contact

[email protected]

Get a demo Download RFP Template Pricing Contact