Boston, June 22, 2015 - MEGA International today introduced HOPEX IT Risk Management to help companies understand the business impact of IT risks and establish the right IT governance.
The solution is designed to provide enterprises with information about the threats and vulnerabilities of their IT assets and help ensure that they have the proper controls in place to avoid risks and support business objectives.
“We understand the pains that companies endure about risks, controls and compliance,” explained Lucio de Risi, CEO, MEGA. “We want to provide them with the means to understand the effects that risks associated with IT can have on a company’s performance and get these risks under control.”
“IT GRC solutions help organizations govern and control risk in the information and technology environment,” explained Michael Rasmussen, founder of GRC 20/20 and a leading expert in GRC. “They provide a way to automate, standardize and coordinate the identification, analysis, and reporting of risks to IT resources and processes while ensuring compliance with policies and regulations. Is this enough? Historically many IT GRC solutions have been exclusively focused on IT security and not on IT governance and alignment with the business. Organizations need an IT GRC strategy and architecture that enables IT governance and risk management in the context of enterprise risk and alignment, while also addressing IT security risks.”
HOPEX IT Risk Management can be used by IT security departments, IT compliance groups, the IT risk manager and the IT governance group, depending on the organization of a company. It is a solution that will provide managers with the means to put IT risks under control and help them define and automate the right IT governance policy. It will help companies:
- control threats to IT assets and related vulnerabilities
- perform business impact analysis
- monitor IT compliance
“The MEGA solution is a strategic tool for IT governance, so it is different from most IT GRC solutions on the market today,” continued de Risi. “Companies need information in order to define the right control structure to support business operations, so our solution was developed to leverage enterprise architecture and IT portfolio management initiatives, which provide a great deal of information that is vital to IT risk management.”
One of the major benefits of HOPEX IT Risk Management is its integration with the company’s enterprise architecture and IT portfolio management solutions. Together, the three software solutions offer companies an in-depth analysis of the impacts of change and risks on IT infrastructure, data and capabilities. The modeling of risk relationships links information about IT threats and vulnerabilities, applications and technologies, and business goals, strategies and processes to create risk-aware IT roadmaps.