Using technology to manage risk and compliance Survey

The importance of technology in GRC

Thank you for agreeing to participate in this research. Bloor Research is looking to gain a deeper understanding of how technology is helping organisations to better manage risk and compliance. Every year there are new regulations you have to consider or new threats you have to address. We are looking to ascertain the level of preparation organisations of different sizes and in different regions and industries are at in achieving risk management and compliance objectives in order to better understand where the roadblocks are.

This survey should take no more than 10 minutes of your time. We are not asking for any of your personal information unless you choose to provide your email address to receive an advance copy of the research report or for entry into the prize draw. Email addresses will not be used for any other purpose. Our privacy policy can be accessed here.

As a thank you, we offer you the following in appreciation of your response:

1. An advance free copy of the resulting research report.

2. Entry into a prize draw with more than $500 in prizes, paid in the currency of your choice.

3. We will make a donation to charity on your behalf.

If you would like to leave the survey at any time, click on the "Exit this survey" link and all answers input will be saved.

Thank you very much for your time.

5.What does GRC mean for your business? (Select all that apply)

Avoidance of surprises

A necessary cost of doing business

Something that is not optional owing to regulatory pressures

Necessary for engendering trust in our stakeholders

A burden, so we do the bare minimum necessary

Managing risk and compliance brings business benefits beyond avoidance of penalties

11.For managing compliance, which statements apply to your organisation? (Select all that apply)

We use fully automated compliance tools

We have a defined compliance management policy and framework

We regularly train staff on regulatory compliance issues

Regulatory workflows are fully automated

We regularly monitor internal controls

Managing sensitive data remains an issue for us

We have an information governance programme

None of the above

12.What do you need to do to achieve GRC? (Select all that apply)

Visibility across all disciplines and systems

Perform a privacy impact assessment

Common definition of all elements and components

Documented and maintained GRC policies

Defined information requirements

Standardised policy definitions

Better training

Better communications

13.What are the benefits of GRC? (Select all that apply)

17.How are governance policies created and implemented? (Select all that apply)

Through a formal process driven by a governance council

On a project basis driven by business goals/objectives

With workflow and approval processes

With facilities to explore links between policies, people, data and usage

With (dashboard) monitoring and enforcement capabilities

With trouble ticketing in the event of a failure to comply

Policy management is informal and ad hoc

We do not have policy management capabilities

18.What technologies do you use for risk and compliance management? (Select all that apply)

Other (please specify)

24.Would you like to receive any of the following?

An advance free copy of the resulting research report

Entry into a prize draw with more than $500 in prizes

Free online access to the film Blood Road in association with the charity that Bloor Research supports

25.Please enter an email address to receive your selected materials. All email addresses will be deleted once the incentive process is complete and will not be used for any other purpose.

26.Which is your preferred currency?

Euro

British pound

US dollar

Current Progress,

0 of 26 answered