GRC Software
GRC software, also called Governance, Risk and Compliance software, streamlines the processes of assessing risks, conforming to regulations and establishing enterprise policies, thus reducing costs and increasing opportunities for business improvement. GRC applications help to eliminate duplication of effort in all three areas and assist in the integration of auditing functions with risk and compliance management. GRC software is related to Audit software, Compliance software and Risk Management software.
Filter Results (58)
Product Rating
Deployment
- Cloud, SaaS, Web (51)
- Installed - Mac (4)
- Installed - Windows (10)
- Mobile - Android Native (6)
- Mobile - iOS Native (6)
Features
- Audit Trail (30)
- Auditing (40)
- Compliance Management (25)
- ISO Compliance (24)
- IT Risk Management (30)
- Incident Management (29)
- Internal Controls Management (37)
- Operational Risk Management (32)
- Policy Management (32)
- Risk Alerts (25)
Pricing
Related Categories
Governance, risk, and compliance focused workflow engine that automates complex processes unique to legal, regulatory, and compliance pressures. Leverage drag and drop functionality to build complex business process workflows; defining rules and logic at each step that drive your GRC processes, escalating issues and approvals to the right person, on time.
Learn more about LogicGate
An agile GRC workflow engine that automates complex processes unique to legal, regulatory, and compliance issues.
Learn more about LogicGate
ZenGRC is trusted by companies of all sizes including Colgate, The New York Times, Airbnb, Stanford University, and Alaska Airlines to reduce time and cost, while eliminating spreadsheets. ZenGRC is light years beyond using spreadsheets, docs, or emails to manage compliance at a fraction of the cost of other enterprise GRC tools. In additIon to increasing visibility into controls, processes and risks, customers also provide better insights to senior management. Get a free demo today!
Learn more about ZenGRC
ZenGRC helps companies move beyond using spreadsheets to manage compliance at a fraction of the cost of other GRC tools.
Learn more about ZenGRC
Resolver's powerful cloud software for Risk, Audit and Compliance connects the three lines of defense in a single platform to maximize efficiency, visibility and reduce negative impact. With a simple interface and in-app guidance, Resolver makes it easy for end-users to input the data you need. Our fully customizable platform is built to scale, which means you can make changes on the fly no coding required. Resolver eliminates the paper chase, so you can focus on what really matters.
Learn more about Resolver GRC
Resolver's Risk & Audit software helps you uncover threats and opportunities. IPPF is built into our app and can be configured for you.
Learn more about Resolver GRC
Quantivate provides a comprehensive software-as-a-service (SaaS) platform and consulting services for all your governance, risk, and compliance (GRC) needs. Our integrated risk management software and flexible data architecture adapt to the way you work, equipping your organization to reduce risk, boost performance, and drive smarter decision-making. See Quantivate's Technology in Action.
Learn more about Quantivate
Quantivate is a leading provider for Governance, Risk, and Compliance (GRC) software solutions.
Learn more about Quantivate
StandardFusion is a 100% cloud-based GRC platform designed to make managing your Information Security Risk and Compliance programs, and the tasks associated with them, simple and approachable. With support for most common standards such as GDPR, ISO 27001, SOC2, NIST, FedRAMP and more, you can connect what your organization does, with what your organization needs to do, to stay compliant.
Learn more about StandardFusion
Modern SaaS application designed to allow organizations to quickly and easily manage their GRC program and follow best practices.
Learn more about StandardFusion
HighBond is the end-to-end platform that brings together security, risk management, compliance, and audit professionals. Because when they join forces, productivity increases, insights become more actionable, and the value of these teams becomes undeniable. Built by industry experts who wanted a better way to work, HighBond streamlines collaboration across organizations, automates repetitive tasks, and delivers best practices in a seamless, award-winning interface.
Learn more about Highbond
The end-to-end platform, designed by industry experts, to create stronger security, risk management, compliance, and assurance.
Learn more about Highbond
Saviynt provides intelligent identity access management and governance for cloud, hybrid and on-premise IT infrastructures to accelerate enterprise digital transformation. Our platform integrates with leading IaaS, PaaS, and SaaS applications including AWS, Azure, Oracle EBS, SAP HANA, SAP, Office 365, SalesForce, Workday, and many others. Our innovative IGA 2.0 advanced risk analytics platform won the Trust Award and was named an industry leader by Gartner.
Learn more about Saviynt
Identity governance and administration across cloud and enterprise infrastructures. Intelligent Identity. Smarter Security.
Learn more about Saviynt
As the leading global provider of ethics and compliance cloud software, Convercent connects ethics to business performance by weaving ethics and values into everyday operations in over 600 of the worlds largest companies. The Convercent Ethics Cloud applications create a single system to manage all compliance requirements in addition to streamlining your internal audit programs. Companies we help take a proactive approach include; Microsoft, Rio Tinto, WeWork, and Kimberly-Clark.
Learn more about Convercent
The Convercent Ethics Cloud applications create a single system to manage all compliance requirements in addition to streamlining your
Learn more about Convercent
Workplace hotline that uncovers critical, often missed details regarding ethics, security, safety, fraud and cyber issues by guiding users through online interviews that are tailored by combining machine learning and subject matter expert knowledge.
Clients benefit from reduced costs and risks from earlier discovery of issues and more efficient remediation. Paired with our InSight Dashboard for issue management that provides anonymous two-way communication.
Learn more about Neighborhood Watch for Corporations
Next-gen hotline that improves engagement and report quality w/tailored interviews via machine learning-powered mobile or desktop app
Learn more about Neighborhood Watch for Corporations
A next generation ERM-GRC solution with pre-built, configurable enterprise risk frameworks with compliance document management, audit planning, issue tracking, and more. Procipient focuses on simplifying risk management, with fast, easy implementation, and an intuitive, user-friendly interface. Procipient gives users insight into their risks at all levels with powerful reporting and dashboards. Procipient is flexible enough to assess anything.
Learn more about Procipient
Next generation ERM-GRC solution with configurable risk frameworks, compliance, audit planning, issue tracking, and more. Simplify GRC.
Learn more about Procipient
Netwrix Auditor is a visibility platform that enables control over changes, configurations and access in hybrid IT environments and eliminates the stress of your next compliance audit.
Monitor all changes across your on-prem and cloud systems, including AD, Windows Server, file storage, databases, Exchange, VMware and more. Simplify your reporting and inventory routines. Regularly review your identity and access configurations, and easily verify that they match a known good state.
Learn more about Netwrix Auditor
Gain complete visibility and control over IT infrastructure changes and configurations
Learn more about Netwrix Auditor
Keylight brings visibility to risks frequently managed in disparate sources. It aggregates internal data points from all corners of the organization, as well as from assessments, audits, authoritative sources and external systems. By having everything centralized, correlated and connected, the platform enables organizations to see dependencies and to make smarter business decisions.
Learn more about Keylight Platform
Empowering companies of all sizes to efficiently and effectively manage their IT asset risk and compliance.
Learn more about Keylight Platform
Parapet enables you to integrate end-to-end Governance, Risk and Compliance. Parapet does this by providing Risk, Controls, Assets, Standards and Regulatory libraries. Parapet also implements audit, asset, remediation and assurance activities. You can adopt risk or control based approach to simplify your Certification and Accreditation process.
Learn more about Parapet
Parapet is a comprehensive, flexible and user friendly system that offers Integrated Risk Management.
Learn more about Parapet
ProcessGene develops forward-thinking GRC software solutions, designed to serve multi-subsidiary organizations. The company has been acknowledged as a market leader and innovator by the most important analyst firms. Businesses and governments worldwide use ProcessGene solutions to manage and control risks, assure compliance to policies and regulations, manage corporate governance programs, and perform internal audits.
Develops forward-thinking GRC software solutions, designed to serve multi-subsidiary organizations.
NAVEX Global delivers the most comprehensive and integrated ethics and compliance platform on the market. Our suite of solutions help you identify, assess and mitigate risks at any scale and for any industry across issues such as harassment, bribery, conflicts of interest and data security. Define and distribute your code of conduct and policies, train key audiences, deliver 24/7 hotline and incident management analysis and extend your risk management and compliance across 3rd parties.
NAVEX Global delivers the most comprehensive and integrated ethics and compliance platform on the market.
The Governance, Risk and Compliance (GRC) platform you've been looking for -- flexible, cloud-based GRC software from Onspring. Easily manage and share information, monitor processes in real time and create reports with improved efficiency and integrity, all within a no-code environment. Whether you're leaving an existing platform or implementing GRC software for the first time, Onspring has the technology, transparency and service-minded approach you need to rapidly achieve your goals.
A rich feature set to manage your GRC processes from end-to-end -- Onspring lets you do it your way from any location, on any device.
VComply is an exceptionally simple way to manage and monitor responsibilities for Compliance in an organization. It works on a simple principle that every instance needs to be addressed as an individual responsibility. It organizes, categorizes and follows up on those responsibilities required for compliance in an organization. Not only is there a full catalog of Compliance under different laws and regulations, one can create one's own unique compliance responsibility with exceptional ease.
VComply organizes, categorizes and follows up on responsibilities required for compliance in an organization.
Apptega is cybersecurity management software helping businesses of all sizes easily build, manage and report their cybersecurity programs for SOC 2, NIST, ISO, PCI, SANS, GDPR, HIPAA and many others. Simplify implementing cybersecurity with real-time compliance scoring, project lifecycle, task management, calendaring, collaboration, budgeting and vendor management all in one place giving you complete control of your cybersecurity program and compliance data.
Easily build, manage and report your cybersecurity and compliance 10x more efficiently with an intuitive UI and one-click reporting.
Governance, risk & compliance document control doesn't have to be painful.
If you're still using spreadsheets, calendar reminders and email, there is a better way.
Take control of your governance, risk and compliance documents with TrackMyRisks.
Take control of governance, risk and compliance documents. Store and share documents securely. Automate renewals and reminders.
Compliance 360 is a comprehensive solution that streamlines the GRC process across the enterprise. Compliance 360 is designed to make compliance, incident, audit and risk management easier, less costly, and much more manageable even for organizations in highly regulated industries.
Designed to make compliance, audit and risk management easier, less costly, and much more manageable.
Multi-regulation Governance, Risk and Compliance platform for highly regulated industries. Quick to start, flexible to change as you grow and always there to support your needs. Superior GRC data management capabilities.
Flexible and fully customizable Governance, Risk Management & Compliance (GRC) solution.
Our job is to help you protect yours. Manage chemical risk, safeguard your workplace and prevent accidents. Meet Alexis, the worlds first artificial intelligence for automating up to 90% of your COSHH assessment or chemical risk assessment process. You can create up to 3 COSHH assessments for free!
Manage Chemical Risk. Safeguard your workplace. Prevent Accidents.
Integrated risk management platform that allows organizations to monitor performance, identify and assess operational risks.
Integrated risk management platform that allows organizations to monitor performance, identify and assess operational risks.
Scalable GRC platform that integrates solutions for tracking operational activities and managing enterprise risks, compliance, incidents, vendors, and policies.
Scalable GRC platform for tracking operational activities and managing enterprise risks, compliance, incidents, vendors, and policies.
DoubleCheck provides powerful software for managing Governance, Risk, Compliance and Audits, with excellent process management, issue management, assessment, testing and reporting capabilities. With DoubleCheck, you have a cost effective, highly functional and configurable solution to assure and demonstrate effective governance, compliance, audits and risk management.
Leading governance, risk, compliance & testing (GRC&T) software platform.
SYNERGi is a sophisticated, yet affordable, GRC platform used by organisations to develop, maintain and report compliance against legal and regulatory obligations.
The cloud-based platform has a range of modules to choose from:
- Governance Management
- Risk Management
- Compliance Management
- Vendor Management
- IT Security Management
- Audit Management
SYNERGi is a GRC platform used by organisations to develop, maintain and report compliance against legal and regulatory obligations.
Whether you need to demonstrate compliance for covered entities, classify your assets, or conduct an annual campus-wide NIST assessment, you can depend on Isora. Our out-of-the-box question sets and workflow simplify the process and allow you to get started on a quick and scalable trajectory in no time. Our applications were purpose-built by information security and risk teams in higher education to meet the needs of higher education and other highly regulated environments.
Conduct scalable organization-wide IT risk assessments - Simplify your risk assessment with Isora.
Borealis helps organizations to manage key stakeholders and secure their support to ensure the success of their projects. Our powerful collaboration software allows any project team to implement effective stakeholder engagement plans and mitigate project risks by making it easy to map and prioritize complex stakeholder relationships, record and monitor all engagements, issues, commitments and grievances, and more. It also assists with the engagement strategy by providing insightful analytics.
Borealis helps organizations to manage key stakeholders and secure their support to ensure the success of their projects.
ReadiNow, powered by the next-generation DX Platform (Digital Transformation) enabling you to manage all facets of your business now. Ranging from GRC, IRM to ERP. Build any application with ZERO coding using ReadiNow easy-to-build workflows.
GRC Applications Include:
- Business Continuity Managment
- Vendor Risk Management
- IT Disaster Recovery Management
- IT Risk Management
- Audit Management
- Corporate Compliance
- Workplace Health & Safety
- Regulatory Change Management
ReadiNow's DX Platform solution allows you to manage every aspect of your business, ranging from GRC, IRM to ERP. Built today.
Integrated Risk Management takes more than labeling manual, expensive, or legacy GRC solutions as IRM. Modern CISOs demand a fundamentally different kind of product. The CyberStrong Platform powers automated, intelligent cybersecurity compliance and risk management that's easily understood by analysts and Board members alike. CyberStrong provides a flexible solution with near-zero time to value and patented Artificial Intelligence automation, eliminating manual effort and enabling success.
Cloud-based risk management platform that helps firms manage compliance, IT, vendors, audits and documentation.
With Impero you get a complete overview of your risk and control-related activities.
Our intuitive tool helps you implement a proactive compliance culture where the time-consuming task of internal control is simplified.
We gather all of your documentation in one place and provide you with a shared frame of reference in relation to risk, control and compliance.
Turn complex governance, risk and compliance challenges into simple controls and processes with Impero.
Tugboat Logic is the Virtual CISO Platform for the enterprise. Unlike traditional GRC platforms designed for large enterprises, only Tugboat Logic provides an automated framework to demystify the process of setting up a security program, getting prepared for security certifications such as SOC 2 and ISO27001, and answering security questionnaires. With Tugboat Logic, enterprises can quickly get secure and prove it to customers.
Tugboat Logic is the Virtual CISO Platform.
CARE is a complete Governance,Risk & Compliance (GRC) software that is currently being used by numerous well-known organizations, operating in various types of industries including banks, insurance, investment firms, hospitals, manufacturing firms,and governmental agencies. CAREweb allows for capturing and assessing risks and evaluating the strength of controls in mitigating these risks.It has dedicated modules for Enterprise Risk Management, risk-based internal audit &Compliance Risk Monitoring
CARE "Control And Risk Evaluation" Complete GRC software and including internal audit module.
https://youtu.be/48BN3PPS0qU
Over 200.000 users agree: Granite Risk Management is a digital tool for modern risk management. With an easy-to-use risk management solution, risk identification and risk assessment take no time at all, and implementing corrective measures is effective. Automated reports make it easy to monitor results and deliver on set goals. With Granite Risk Management risks are easily identified and systematically assessed, and implementing corrective measures is effective.
With a digital tool risk management, compliance and governance are tackled smoothly without spreadsheets. Try it free for 30 days.
OnDemand supplier enablement addresses supplier challenges and maximizes the ROI from spend management initiatives.
OnDemand supplier enablement addresses supplier challenges and maximizes the ROI from spend management initiatives.
policyIQ is a cloud-based Governance, Risk and Compliance (GRC) solution, enabling the focused management of a wide range of GRC processes, including Risk and Compliance, Internal Audit, Policy Management, Anti-Corruption Compliance and Conflict Minerals Compliance. policyIQ can be quickly implemented for a specific aspect of an overall GRC program, or easily scaled to integrate multiple initiatives, allowing the organization to realize even greater efficiency and impact.
Cloud-based Governance, Risk and Compliance (GRC) solution that is flexible, scalable, user friendly and easy to implement.
TriLine GRC is an enterprise governance, risk and compliance solution that allows you to easily implement your 3 lines of defense.
TriLine GRC is an enterprise governance, risk and compliance solution that allows you to easily implement your 3 lines of defense.
Ostendio MyVCM is an Integrated Risk Management Platform that makes it easier to build, operate and showcase your security program. Unlike combining multiple point tools, documents, and spreadsheets, Ostendio provides a single solution that incorporates users and requirements across the entire enterprise. Consider MyVCM if you need to demonstrate compliance to security standards and regulations to your customers, employees, auditors or partners.
Ostendios MyVCM is a cybersecurity and information management software helping companies comply with any standard from SOC2 to HITRUST
SNX systems offer solutions for banks and brokers with features such as governance, risk and compliance (GRC) and revenue analysis
SNX systems offer solutions for banks and brokers with features such as governance, risk and compliance (GRC) and revenue analysis
Software suite connecting to ERP, HCM or CRM to assist in governance, risk management, and compliance. Modules for Access Reviews, Segregation of Duties, Audit Trails, and Identity Management handle many of the analysis, reporting, and mitigation processes needed for regulatory and security requirements. With pre-developed integrations for many software, Assure allows cohesive audit & security between multiple systems. It also has a universal product integration for additional in-scope systems.
Software suite connecting to your ERP/HCM/CRM to assist in access security, segregation of duties, audit trails, and audit reporting.
Improve decision making and standardize risk management with this GRC management solution that allows you to manage operational and strategic risk, monitor incidents, policies, and audit plans.
GRC management solution that allows you to manage operational and strategic risk, monitor incidents, policies, and audit plans.
Software solutions that make it easy to comply with external and internal requirements, assess operational risks, and plan audits.
Software solutions that make it easy to comply with external and internal requirements, assess operational risks, and plan audits.
The MetricStream ITGRC solution enables companies to implement a formal framework to rigorously measure, mitigate, and monitor IT risks. It also simplifies and reduces the cost of compliance with many regulations governing data retention, privacy, confidential information, financial accountability, and recovery from disasters.
The MetricStream IT GRC solution helps you streamline IT GRC processes, effectively manage IT risk, and meet IT regulatory requirements
A robust platform of Governance, Risk and Compliance (GRC) solutions. This platform is based on a solid foundation of process management, risk management and compliance expertise. Managing corporate responsibilities and obligations, as well as structuring enterprise risk management are all key aspects of the BWise GRC Platform.
A robust platform of Governance, Risk and Compliance (GRC) solutions.
Flexible software that helps organizations perform regulatory compliance audits, assess and mitigate enterprise risks.
Flexible software that helps organizations perform regulatory compliance audits, assess and mitigate enterprise risks.
ControlPanelGRC is a Governance Risk and Compliance (GRC) and Continuous Controls Monitoring (CCM) platform for SAP environments to provide a better approach compliance automation. ControlPanelGRC is written, implemented and supported by GRC professionals. Through exceptional usability, rapid implementation, seamless integration to SAP, robust reporting and analytics broad functionality, and an easy-to-understand user interface, ControlPanelGRC helps make SAP users Always Audit Ready.
Compliance automation software designed for SAP environments to accelerate security and business control processes.
Software solution that helps organizations meet IT regulatory compliance requirements and mitigate IT security risks.
Software solution that helps organizations meet IT regulatory compliance requirements and mitigate IT security risks.
A-LIGN is one of a limited number of solution providers that can offer a consolidated approach to information technology and information security audits. A-LIGN simplifies the audit and assessment process with A-SCEND, A-LIGN's proprietary governance, risk management, and compliance (GRC) software. A-SCEND was developed in-house with the goal of solving our clients' needs, by creating a more efficient, organized auditing process experience.
A-SCEND is A-LIGN's proprietary governance, risk management, and compliance (GRC) software solution.
The GRC-solution enables you to set up action plans and controls as well as manage organizational risks. Once you have the compliance software you can add more modules to the system e.g. GDPR, ISO standards, anti-money laundering, and anti-bribery and corruption modules to ensure vital compliance in these areas. The system allows you to add your own internal procedures and framework for documenting compliance, and its impressive capabilities and functions are highly appreciated by customers.
Integrate and manage your projects, controls, and organizational risks with RISMA's intuitive and user-friendly GRC-solutions.
BIC Cloud GRC automates your processes to identify, evaluate and avoid risks. Features for governance, internal control and compliance allow the cross-departmental cooperation. With standardized workflows you cover every step of your integrated risk management, from the test of design to the action management. Reporting features support the unambiguous sharing of information for the internal revision and external audits.
With BIC Cloud GRC companies realize the wholesome management, control and monitoring of their integrated risk management.
An entry point for implementing structure and diligence in the management of a cybersecurity program
An entry point for implementing structure and diligence in the management of a cybersecurity program
GlobalSuite supports the implementation, management, automation, monitoring and deployment of different types of risks of your company.
GlobalSuite supports the implementation, management, automation, monitoring and deployment of different types of risks of your company.
GRC-Enterprise from Dion Global is a risk based, end to end audit planning, work-paper management and issue remediation solution.
GRC-Enterprise from Dion Global is a risk based, end to end audit planning, work-paper management and issue remediation solution.
TULA provides visibility into performance across study/project portfolio will enable companies to have a single source of truth to utilize for systematic monitoring of portfolio, project and studies performance, risk and compliance policies across. With growing reliance on CROs for development projects having a standardized tool that ensures metrics measurement confidence is paramount to the overall success.
Get real-time insights into performance across your business. You can track sites
TULA is an Integrated oversight and GRC tool with single centralized system. It Predict the Risks across Clinical Trial Tula is advance
For companies who need to ensure information security, Aptible Gridiron is the only Security Management platform enabling them to earn and keep customer trust by helping them design, operate and audit their ISMS, making them audit-ready and secure in a fraction of the time.
Helps companies design, operate, and audit their ISMS, getting audit-ready and secure in a fraction of the time.
GRC platform that includes modules for anti-bribery anti-corruption risk, aml risk, compliance training, and supplier risk managment
GRC platform that includes modules for anti-bribery anti-corruption risk, aml risk, compliance training, and supplier risk managment
Robust security platform that is built from a perfect blend of information, technology, and infrastructure.
Robust security platform that is built from a perfect blend of information, technology, and infrastructure.
Developed by a team of security professionals, BALLAST is a cloud-based risk assessment tool based on NIST methodologies that streamlines the assessment process and provides on-demand compliance reporting. It provides you with an easy to use interface, flexible reporting options, and complete customization ability over the structure of your assessments. Most importantly, BALLAST allows a facility to identify and proactively track risks that drive security initiatives and remediation work in yo
A cloud-based tool that streamlines the Risk Assessment process and provides on-demand reporting.