Gain A Complete View of Risk & Compliance

Download as pptx, pdf, or txt
Download as pptx, pdf, or txt
You are on page 1of 22

Gain a Complete View of Risk &

Compliance
Urna GRC is a single solution to oversee and report on
your organization’s Governance, Risk Management and
Compliance programs
About BlastAsia
Urna GRC is a product of BlastAsia. Headquartered in Ortigas Center, Pasig City,
BlastAsia is a world-class software company providing end-to-end product
engineering and digital enterprise solutions since 2001

TRACK PROCESS
INNOVATION
RECORD EXCELLENCE

18 years experience in lean startup Expertise in new tech such as Certified ISO 9001
and agile software development Artificial Intelligence/Bots, (Quality Management Systems) and
methodologies with over 140 Machine Learning, Internet of ISO 27001 (Information Security
business and engineering talent Things, and Blockchain Management Systems)
CLIENTS

Wide Array of Industries and Geographies Served

FINANCE INDUSTRY SHIPPING & TRAVEL

TECHNOLOGY OTHERS
Key Offerings

OUTSOURCED PRODUCT ENTERPRISE DIGITAL


ENGINEERING TRANSFORMATION

We turn your ideas to real-life products We help companies go digital through


by bringing together a team of Microsoft- strategy consulting, proven platforms &
certified engineers and proven agile tools, pre-built solutions, and
engineering practices cybersecurity
URNA CYBERSECURITY
Protect Your Digital Enterprise Through Holistic Cybersecurity

Products Managed Services Learning Services

Governance, Risk Management, and VAPT Risk Planning for Executives


Compliance See your systems in a hacker or a network Improve organizational preparedness to
security professional’s point of view through cyberattacks through an interactive
periodic vulnerability assessment & workshop designed for your organization’s
penetration tests top leaders

Data Leak Protection SIEM Online Staff Awareness


Get discovery-driven, real-time situational Improve your employees’ awareness about
awareness to security logs in order to cybersecurity and achieve regulatory
Endpoint Management respond faster to anomalies compliance by enrolling your team to online
courses
Patch Management
SIEM Have software patches and updates to your
system taken care of and enjoy the reliability
and security of a constantly monitored
system
Network Security
Product Overview
Organizations in highly regulated
industries as well as those with global
The GRC relationships are faced with rising
demands from their leadership,
Challenge regulators, and customers to
effectively manage various types of
risks
DIFFERENT RISK
• Loss of productivity
TYPES •

Regulatory and compliance
Organizational change
OPS
• Theft and fraud
• IT failure
• Statutory and Regulatory compliance
• Data protection & cyber security
LEGAL • Conflicts of interests
• Conduct risk & harassment
• Scandal, etc.
• Intellectual property loss or violation
• Performance management
HR • Health and safety
• Attrition
• Compensation and benefits
• Statutory and Regulatory compliance
• Technological change
FINANCE • Data loss
• Cashflow
• Theft
• Data loss
• Compliance
IT • Threats and incidents
• Response efficiency
• Lack of skills
The key in overseeing
governance, risk management,
and compliance (GRC) is
having a central repository of
risks and linking them to the

The Solution right corporate controls, action


points, assets, and documents.

Also equally important is


sharing critical pieces
information among
concerned parties.
Urna GRC is an integrated GRC web solution
which maps out risks with controls, actions,
assets, incidents, and documents and brings
Introducing Urna internal and external stakeholders together
in one place.
GRC It helps establish a library of evidence that
helps you to demonstrate you are managing
your risk and complying effectively.
TAKE A CENTRALIZED VIEW OF RISKS
Identify and evaluate risks and their corresponding controls to
determine areas for improvement

Key Benefits
BRING STAKEHOLDERS ON THE SAME PAGE
Provide risk managers, executives, auditors, regulators, and end-
customers access to real-time information

BOOST COLLABORATION & DATA COLLECTION


Extend Urna GRC functionalities through a mobile
app and automate updates via Robotic Process
Automation or APIs
How Urna GRC Works
OPERATIONS

HUMAN RESOURCES
RISKS ASSETS INCIDENTS ACTIONS CONTROLS

Data Leak Legal Actions Contracts


INFORMATION TECHNOLOGY Intellectual
Property
Accidental
Data Recovery Data Backup
Data Loss Deletion
FINANCE
Personal Data privacy
Identity Theft Inform owner
Information Mngt. Program

LEGAL

USER GROUPS URNA GRC


Risk Manager’s Dashboard
Risk Register Interface
Key Features
GRC Management Informative Interface

• Log, define, and link Risks, Controls, • Web-based user interface


Actions, Incidents, Assets, and Documents • Single view to record Risks, manage
• Assign Risks for ownership and Controls, report Incidents and track Actions
accountability • Configurable scoring of Risks & Controls
• Self-Assessment for progress monitoring providing a matrix for prioritization
and prioritization of Controls and Actions
• Audit capable for tracking changes to the
• Provide Notifications to Risk owners and system
managers • Generate Reports when needed
• User management to define capabilities of
Risk owners
SYSTEMS INTEGRATION/PROCESS AUTOMATION

Automating Data Collection


• Enable automatic updates of critical information in Urna GRC through
API integration to existing solutions such as ERP & accounting systems
as well as cybersecurity systems

• In the absence of APIs, connect current systems to Urna GRC through


enterprise-grade Robotic Process Automation (RPA) solutions

POWERED BY
MOBILE APP EXTENSIONS

Engage Customers and Tighten Monitoring


• Allow verified customers to log incidents
using a white-labeled mobile app, which can
then be further processed in the core Urna
GRC web app

• Provide executives with an internal mobile


app to monitor risk scores and receive
notifications of important updates anytime,
anywhere
The Team Behind Urna GRC
Urna GRC was co-developed by BlastAsia and
GRC One, whose executive team consists of
industry experts with specializations in
Governance, Risk Management and
Compliance

Jeff Ashbolt Daren Martin


GRC One Co-Founder & Director GRC One Co-Founder & CEO

Jeff is joint founder of GRC ONE and leads our business Daren has worked for much of his career within the highly
development and product strategy work. Jeff has been the regulated financial services industry. Daren brings both his
executive lead for product senior management and technology knowledge to
strategy and the development of new markets his passion for modernizing Risk Management practices in
for several firms servicing Financial Services, Aviation Safety all types of organization.
and Healthcare customers.
Proven Global Track Record
Implemented at one of the UK's largest Wealth Management
Groups, Urna GRC successfully replaced the exiting Key Statistics
spreadsheet environment within 4 weeks, giving the
organization’s first group-wide integrated governance process. • 120+ financial services
companies, school trusts, and
non-profit charities
The system now provides both group and individual business • 2000+ Individual users
entities with key insights into operational risk and the business • Across 75 countries
controls implemented to evidence compliance to both
regulation and internal policies. Transparency of the process
and ownership of risks and controls is distributed across the
organization with critical tasks and review points noted for
action.
Licensing
User Types Scheme Price
• Risk Manager • Inclusive of cloud hosting on Azure
• Full access • Inclusive of user training (one-time for
• Executive Users 3 days with up to 14 trainees)
• Assign Risks • Customization not allowed
• Manage, add, approve Actions • Instant company setup on the web
• Reporting
• Basic Users PHP 1,800
• View only /user/month
• Report Incidents
• Provide Actions
35th Floor, The Orient Square Bldg.
F. Ortigas Jr. Road, Ortigas Center,
Pasig City 1605 Philippines
+63 (2) 914-4456 to 58

You might also like