Location & Language
No account yet? Create AccountForgot your password? Reset Password
- ADOscore
ADOSCORE
Strategy and Performance Management
Application Scenarios
Balanced Scorecard
IT-Performance-Management
Process Performance Management
Strategy Assessment
Make performance work – with ADOSCORE. Start your initiative now: register for an Info Day or attend a training.
- Info Days
- Trainings
- Support Portal
- ADONIS
ADONIS
Business Process Management
Application Scenarios
Process Design and Documentation
Work instructions
Compliance Management
Process analysis and optimisation
Make processes work – with ADONIS. Start your initiative now: register for an Info Day or attend a training.
- Info Days
- Trainings
- Support Portal
- SEE IT
- TEST IT
- USE IT
- ADOLOG
ADOLOG
Supply Chain Management
Application Scenarios
Transparency in the Supply Chain
Implementation of the SCOR Mode
Risk Management
Supply Chain Performance
Make supply chains work – with ADOLOG. Start your initiative now: register for an Info Day or attend a training.
- Info Days
- Trainings
- Support Portal
- ADOIT
ADOIT
Enterprise Architecture Management
Application Scenarios
Business Capability Management
Service Portfolio Management
Application Portfolio Management
Master Data Management
Make architectures work – with ADOIT. Start your initiative now: register for an Info Day or attend a training.
- Info Days
- Trainings
- Support Portal
- SEE IT
- TEST IT
- USE IT
- GRC
GRC
Governance, Risk and Compliance
Internal Control System
Application Scenarios
Internal Control System
Risk Management
Compliance Management
Procedure Management
The BOC GRC suite – comprehensive, transparent, integrated, role-based.
Unbeatable.
- Two Pager
- Video
- Events
- Trainings
- Contact
- Consulting
Make business work – use our Strategy Management, Process Management, EAM,... Start your initiative now!
- Info Days
- Trainings
- Support Portal
Internal Control System (ICS),
Risk and Compliance Management
Your next generation GRC suite
For more than 15 years, our GRC suite has been successfully implemented by our clients. Continuous improvement, full focus on professionalism and comprehensive integration – these are the pillars of our GRC suite, leaving nothing to the imagination! Meet risks and controls sustainably and increase the efficiency, effectiveness and success of your company. From small businesses to large enterprises – build an advantage over your competitors!
Key facts:
15 years of experience
with integrated GRC systems
– BPM, EA, GRC –
Everything under one roof
Best practices
We support you in reaching your goals,
no matter what maturity level you are in
and together with you, we take the optimal path to accomplish your objectives
Comprehensive | from "classic ICS" to workflow-supported GRC ... |
|---|---|
Integrated | ... by using existing assets in our platform |
Transparent | ... from data capturing to maintenance to analysis & reporting |
Role-based | ... from ICS management to audit and revision |
Unbeatable | Everything under one roof – let information flow transparently between the BOC Group platforms |
The GRC suite of the BOC Group
Embedded and integrated with your corporate asset repository.
"There is no other solution I can deeply integrate while ensuring
all content is fully reusable! The synergies are unbeatable."
Erik Guschlbauer,
BOC Group, Service and Innovation Management
GRC 2-Pager
Application scenarios at a glance
Internal Control System (ICS) | Asset & Organizational Scoping |
|---|---|
Risk Management | Risk Assessment |
Compliance Management | Control Testing |
IT Risk | Control Implementation |
Procedure Management | Audit Reporting |
The capabilities of our GRC suite - Highly Modular & fitting your professional use cases
Capture risks
Document identified risks using risk catalogs and group them according to internal requirements. A tabular interface allows for easy, intuitive and fast capturing of data.
Organize risks
Take advantage of the opportunities to easily create and maintain risk hierarchies in your catalogues. Thus, redundancies and additional efforts are avoided and a basis for aggregation is created.
Integrate risks with BPM and EA
Link identified risks with your processes, IT assets or business units from the enterprise asset repository and profit from an integrated system on a uniform data basis.
Define role-based access
It is you who decides which information and actions are available to the users. The flexible authorization concept is based on the assignment of roles and allows an individual definition per risk.
Assess risks
Evaluate your risks according to both qualitative and quantitative dimensions that are configured according to your company's needs. Derive controls and initiatives resulting from your forecasts and trends.
Derive controls
Assign the controls from your catalogues (for example according to ISO 27000 or COBIT) to the risks and implementing assets (including processes, IT systems or documents).
Review controls
Review your controls regarding ToD (Test of Design) and ToE (Test of Effectiveness). The results show weaknesses and enable the definition of measures to adapt to the risk appetite of the company.
Carry out controls
Carry out your controls supported by the system and benefit from the centralized and uniform documentation of the results. Related documents (e.g. control documents) can be directly saved and archived.
Define measures
Use your resources effectively and prioritize actions that are directly related to risks and controls. Constant tracking allows to identify requirements for adaptation before any internal and external audits are carried out.
Ensure audit-readiness
Facilitate the audit process! The GRC suite automatically logs any changes to risks, controls and measures to ensure traceability. The resulting audit trail ensures transparency and reduces the effort required for further checks and revisions.
Comprehensive workflows
The integrated workflow engine can be flexibly configured according to your needs. By mapping the assessment procedures in automated workflows, the complexity is reduced and the focus is placed on content-related aspects.
Automate workflows
Request the effective evaluation of your risks and controls in an automated way! The GRC suite handles distribution, monitoring and documentation of tasks in a transparent and up-to-date flow of information.
Automated notifications
In order to increase transparency and traceability, your colleagues are informed and reminded of their tasks via e-mail. The structure and content of the messages can be defined in a company-specific manner.
Personalized dashboards: Tasks
Customized dashboards provide role-specific information to the users. The assigned tasks are presented clearly and intuitively. This clear representation of the UI reduces training efforts and increases significantly the acceptance in the company.
Personalized dashboards: Monitoring
Monitor and review the status of your risks, controls, and measures, as well as their integration in the enterprise asset repository, using intuitive reporting, evaluation, and collaboration capabilities.
Search & find
Browse through the entire Enterprise Asset Repository using keywords. Create, combine, and save multiple queries using options and filters. Use the possibility to directly edit the results.
Analyse & evaluate
Benefit from the numerous graphical analysis possibilities and identify key dependencies. GANTT charts, business impact analyses, matrix or portfolio views are seamlessly integrated and support a structured evaluation of your corporate assets.
Reporting
Prepare information required for audits and certifications with the click of a button! The flexible reporting system allows the individual design of reports and analysis views as well as the further processing of data in common formats.
Capture risks | Organize risks | Integrate risks with BPM and EA |
Define role-based access | Assess risks | Derive controls |
Review controls | Carry out controls | Define measures |
Ensure audit-readiness | Comprehensive Workflows | Automate workflows |
Automated notifications | Personalized Dashboards: Tasks | Personalized Dashboards: Monitoring |
Search & find | Analyse & Evaluate | Reporting |
| Check out what's new in our GRC suite | details |
|
GOVERNANCE, RISK AND COMPLIANCE |
|
|
Integrated GRC and the Three Lines of Defence 1 Business Insight Video, 3 Lines of Defence, |
|
|
GOVERNANCE, RISK AND COMPLIANCE |
|
|
5 Tips and Key Success Factors, |
|
Demo & Contact
Contact one of our experts and schedule
a guided, personal online demonstration.
Highly versatile
Multilingual | Comprehensive workflows |
|---|---|
100% web-based | Configurable |
Database-based | 100% intergratable in scenarios |
Highly flexible authorization concepts | AD integration / single-sign-on |
Versioning, Historicization, Audit trail | Professional service and support |
An excerpt of our supported standards
COBIT | ITIL | SOLVENCY II | ISAE 3402 |
SOX | COSO AND COSO II | ISO 27000 | ISO 31000 |
BSI IT-Grundschutz | ISO 20000 | ISO 9001:2015 | RISKIT |
DSG 2000 | EFQM | ONR 49000 | ISO 19011 |
Customers who trust in us
More than 1,000 clients in over 50 countries worldwide – browse through selected customers of BOC Group
"ADONIS and the ADONIS Process Portal are a key success factor in the implementation of our ICS",
Harald Fürlinger,
ICS Manager, voestalpine Group-IT GmbH
Demo & Contact
Contact one of our
experts and schedule
a guided, personal
online demonstration.
?
QUESTIONS?
