Get documents about "Hyland Software Roadshow Presentation
Document Sample
AIIM New England Program
Enterprise Content Management in the World of Governance, Risk
and Compliance
Presented By -- Timothy P. Ansberry
March 21st, 2006
ECM and GRC
GRC Overview
ECM to facilitate GRC
Front End Solutions
Business Process Improvement
Back End Compliance Solution
Software Vendors
Contract information
GRC Overview
Why is Compliance being talked about?
Costs are skyrocketing
Risks are more than just financial
Compliance crosses all industries
C-level attention
All levels of the organization are dealing
with
GRC Overview
Compliance
Sarbanes Oxley Basel II
Gramm-Leach-Bliley Act FDICIA
Patriot Act HIPAA
ISO 9000 Sec 17a-3
JCAHO Fair and Accurate Credit Transactions Act
Other Federal and State Regulations Other Industry Regulations
“The pressure on organizations is driving this area of risk to the top of
the priority stack. In the US alone, nearly 114,000 new regulations
have been introduced since the government started collecting this
metric in 1981. Apply this to the international environments that many
organizations operate within — and the figure becomes oppressive.” –
Forrester, 11/05
GRC Overview
Over the past year, U.S. companies spent upwards of $15
billion on technology products and professional services in
order to adhere to new compliance regulations, according to
AMR Research. Spending on Sarbanes-Oxley compliance
accounted for about 40 percent of this total, or about $6.5
billion.
The average company is spending $4.4 million on SOX
compliance annually. - FEI survey, 2005
The effect of compliance and corporate governance on
software spending is significant. By 2008,the annual
worldwide new software license spending for compliance and
corporate governance will be $9.2 billion. - Gartner 12/05
Compliance Overview
“Through 2007, companies that choose one-off solutions to
each regulatory challenge they face will spend 10 times more
on IT solutions for compliance than their counterparts that
take a sustainable, program-office-based approach” -
Gartner 12/05
“Through 2010, public companies that do not adopt a
compliance management architecture will spend 50 percent
more annually than their peers to achieve Sarbanes-Oxley
compliance” - Gartner 12/05
“Most vendors provide capabilities to meet only a single
requirement or a handful of requirements and really are not a
risk and compliance management vendor themselves. Real
risk and compliance vendors are those that provide a platform
for documenting and overseeing risk and compliance across
an organization” – Forrester, 11/05
ECM to facilitate GRC
ECM functionality can be used to
facilitate GRC initiatives
Front – End Solutions
Business Process Improvement
and Automation
Back – End Solutions
ECM to facilitate GRC
Front-End Compliance Solutions
- Compliance Documentation
- Policy and Procedure Management
- Audit Testing, Investigation Management
- Issue Tracking, Incident Management
- Electronic Work Papers
- Collaborative Assessment Environment
Compliance Policy Review
Reporting Portal Views Collaboration
Project Mgt Automation
SOX Software Market Trends
Initial Solutions
Excel Spreadsheets,
Word Documents
Auditor related tools
KPMG – CAT tool
PWC – IC WorkBench
D&T – RCTS
Seen as short term
fixes
SOX Software Market Trends
Second Generation
Solutions
Dominated by niche
vendors
A couple
established
industries seen as
long term vendors
ERP industry
ECM industry
(Enterprise
Content
Management)
How to Sell GRC Solutions
Business Process Improvement
- Automate and Strengthen Processes
- Automate and Strengthen Controls
- Automate Reviews and Approvals
- Inherent Audit Trails
- Line-of-Business System Integration
- Legacy System Integration
Document System Digital
Workflow E-Forms
Imaging Integration Signitures
ECM and Compliance
Day-to-Day Solutions
Managing the ongoing procedures and
processes to ensure compliance
Workflow
Accounting and Finance
Accounting/Finance
Accounts Payable
Accounts Receivable
Financial Reporting
Fixed Assets
Cap Ex/Treasury
Internal Audit
Tax Accounting
Time and Expense
Example of Invoice Processing Workflow
Accounting and Finance
Accounting/Finance
Accounts Payable
Accounts Receivable
Financial Reporting
Fixed Assets
Cap Ex/Treasury
Internal Audit
Tax Accounting
Time and Expense
Example of Cap Ex Approval Workflow
Human Resources
Human Resources Dept
Hiring/Termination
Benefits Administration
Compliance Requirements
Policies and Procedures
Training
Example of HR Application Workflow
How to Sell GRC Solutions
Back-End Compliance Solutions
- Data Protection and Security
- Disaster Recovery Services
- Ease of Document Retrieval
- Storage & Retrieval of E-mails
- Document Tracking and Version Control
- Automate Document Retention
Records Document E-Mail Document Versioning
Management Imaging Archiving Retention Control
ECM and Compliance
Back-end Solutions
Document and
Information Retention
Imaging, e-mail
archiving, records
management,
document retention,
etc.
Software Vendors
“Will the Real Risk and Compliance Vendor Please Step Forward?”, Michael Rasmussen, Forrester Research, Nov. 28, 2005
Competitors
“Through 2005,
Sarbanes-Oxley (SOX)
solutions based on
process management or
document management
platforms will be more
successful than those
from any other vendor
category” - Gartner, 2005
Summary
Tim Ansberry, CPA, CDIA+
Industry Manager – Compliance
Solutions
Hyland Software, Inc.
28500 Clemens Rd
Westlake, OH 44145
Phone: 440-788-5846
Fax: 440-788-5946
Cell: 216-225-1479
Email: tim.ansberry@onbase.com
