POLICY AND COMPLIANCE MANAGEMENT

Maclear eGRC Suite

An Efficient Way to Implement Corporate Policy and Standards
Overview
Maclears Policy and Compliance Management solution is designed to provide a holistic integrated solution to establish and manage
organizational, functional or process based policies, standards, and procedures and provide a mapping to various regulations. The policies which
have been established in the framework can be related one-to-many industry regulations, best practices and control standards that are critical for
risk mitigation. A rich set of authoritative sources provide an integrated solution that enables organizations to comply with local, national and
global regulations. Organizations can perform risk based compliance assessments to identify, track and remediate gaps in controls. Attestations
of controls performed once can be re-applied elsewhere within the organization to reduce duplication and cost. Additionally, the solution can help
in mitigating policy exceptions, exclusions and violations to manage and lower the risks associated with them.
The solution provides a framework to effectively create, review and approve policies within a policy management lifecycle. Policy managers,
reviewers and approvers can be authorized to concurrently manage revisions to policy, track updates and approvals, and grant policy exceptions.
The integrated event and notification system can be used to drive compliance assessments and stakeholder reporting and communications.
www.maclear-grc.com
Module at a Glance
Establish and manage policies, standards,
and procedures and provide a mapping to
various regulations
Create, review and approve policies within a
policy management lifecycle
Policy guidelines for comply with global and
local regulations
Tier structure applications for policies,
standards and exceptions
Re-use control attestations to reduce
duplication
Key Benefits
Integrated Approach
An embedded integrated policy creation, management, and reporting
using various levels of workflow
Control Mapping
One-to-many mapping of controls allows attestation results performed
once and applied to all applicable regulations
Exceptions and Non-Conformance
Identification of policy exceptions and non-compliance to policies to
mitigate enterprise level risks
Policy Management
Awareness of the policies allows better adaptation and understanding. This
also helps in providing metrics on policies for enhancement
Compliance self assessment
Provides a sustainable process whereby management can validate the
operating effectiveness of its internal controls via testing
Applications
Policy, Topic, Section
Applications based on tiered structure to provide management information of the policies and standards
Regulations
Subscribed authoritative sources by industry for ensuring organizational readiness
The sources include Basel, ISO, FFIEC, EU Data Protection, NIST, PCI, NERC and many more
Control Standards
Provides the should statements for guidance and direction related to internal policies and external regulations
Control Activities
Provides a record of all testing procedures, sample sizes and related metrics to determine the effectiveness of a control
Policy Exception
Captures policy exception information when it is known that a policy requirement will not be met
The exception is tied to the exact Policy, Topic and/or section that a control standard did not meet
www.maclear-grc.com
To Learn More about Maclear eGRC Suite - Winner IRM Global Risk Award 2013
Visit: www.maclear-grc.com or
Email: for more information or to view a Demo info@maclear-grc.com
USA: +1 630 839 9214
UK: +44 2030062558
info@maclear-grc.com
About Maclear
Maclear specializes in enterprise governance, risk
and compliance (eGRC) solutions. Our core
capabilities cover roadmap design, solutions
scoping, design & implementation, training &
awareness and solutions support. Our integrated
holistic approach to eGRC helps drive efficiency,
effectiveness and agility for our clients by
minimizing risk and compliance threats, enabling
process improvement, fostering collaboration and
facilitating automation.
Our client base spans industries including banking,
financial services, insurance, healthcare, retail,
manufacturing, education and energy. As a fast-
growing company, we have earned a reputation of
delivering exceptional value to our clients through
delivery of eGRC solutions and services at
affordable prices.
High Impact and Low Cost Model
SaaS based solution Remote Access and No Hardware Costs
WYSIWYG functionality- Drag and Drop features ensure that no prior
coding knowledge is required for customization
Easy learning curve- Intuitive user interface ensuring quick take up and
minimal training requirement
Enterprise level rapid implementation- Data importing in minutes via
Import Utility and APIs
Reporting Dashboards and Access Management
Customizable access management by User(s), Roles, Records and
Section
Dynamic and Real time reporting dashboards with advanced business
intelligence, analytics and drill-down capability customized to each
user's needs
Effective for senior management for decision making