Edgile is the trusted cyber risk and compliance partner to the world’s leading organizations, providing consulting, managed services, and harmonized regulatory content. Our strategy-first model optimizes IAM, GRC, and cybersecurity both on-premises and in the cloud. By transforming risk into opportunity, we secure the modern enterprise through solutions that increase business agility and create a competitive advantage for our clients.
KPMG LLP, the audit, tax and advisory firm, is the U.S. member firm of KPMG International Cooperative (“KPMG International”). KPMG is a global network of professional services firms providing Audit, Tax and Advisory services. We operate in 154 countries and territories and have 200,000 people working in member firms around the world.
KPMG helps large, complex organizations overcome business challenges related to information protection, business resilience, security, risk, and compliance. RSA complements KPMG’s Information Protection and Business Resiliency services by providing wide-ranging, flexible technology solutions that automate business processes around information protection and eGRC.
Together we help clients improve their risk posture, increase the effectiveness of compliance, and lower the cost of enterprise risk governance.
TUV Rheinland OpenSky offers one of the most advanced and integrated portfolios of security solutions and services for connected devices, platforms and Internet of Things (IoT) with the mission to enable a secure and safe digital future. Headquartered in Littleton, MA, OpenSky is a 100% subsidiary of TÜV Rheinland Group, operating some of the world's broadest smart device and IoT testing labs, defining industry standards for functional safety and security and is a leading provider of inspection and assurance services that combine safety, quality and security certifications.
TUV Rheinland OpenSky provides expertise to help corporations protect information assets, minimize risk and accelerate the adoption of enabling technologies with its holistic approach and framework addressing Cyber Security, Privacy, Cloud Infrastructure and Functional Safety requirements to build trusted, connected platforms.
Increased demands of the regulatory environment require you to optimize risk management and compliance processes and control the costs of compliance to maximize efficiencies. Businesses need to identify the right governance, risk, and compliance (GRC) technology tool(s) to support a framework providing process efficiency, improved data management and reporting. The success of your GRC program requires proper steps and procedures for selecting the right technology, implementing the selected tools and maintaining a sustainable operating model. PwC’s GRC Technology Enablement Solutions help you perform an initial assessment of the tools and technology needed, and then assists with implementing those to facilitate effective GRC activities. We help you promote the consolidation, coordination and reporting of the GRC activities throughout your organization.
Crowe LLP is one of the largest public accounting and consulting firms in the United States. Our experienced professionals have deep subject-matter expertise in security and privacy, risk management, internal audit, fraud and ethics, and regulatory compliance to keep you advised of emerging trends, industry benchmarks, and best practices. Combined with the breadth of our financial services industry knowledge, we bring thought-leadership and real world solutions to our clients.
The name “Archer Experts” is a clear declaration of who we are and what we do. It is a bold proclamation that must be backed by stellar performance to stand up to the scrutiny of today’s aggressive business climate. Archer Experts has a singular focus in maximizing the effectiveness of your GRC program through the design, configuration and customization of RSA’s Archer eGRC Platform, using the most experienced resources anywhere. “Isn’t it time you called an expert?”.
Iceberg helps organizations plan, deploy and support successful implementations of GRC solutions, to drive more informed and confident business decisions. Serving all of North America, our team of consultants, developers and subject matter experts offers a full lifecycle of services, including executive workshops, implementation and integration, and post-production support services. We are a Titanium Partner specializing in RSA Archer.
We have been the customer! Verterim is a company founded with Governance, Risk, and Compliance (GRC) as our focus and former GRC practitioners at our core. We understand business coupled with technology is critical to GRC success.
Verterim specializes in GRC and offers; GRC integrations providing plug and play functionality, RSA Archer hosting and managed services as a Micro Soft partner, professional services, and GRC products as a value-added reseller. We simplify GRC using a team-centric approach to partner with clients, providing highly skilled GRC consultants with years of in-depth experience building effective GRC programs. Verterim brings a vast knowledge base of best practices and valuable lessons learned to our clients to enhance their GRC processes and program.
BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings. The company's Security Rating Platform continuously analyzes vast amounts of external data on security behaviors in order to help organizations manage third party risk, benchmark performance, and assess and negotiate cyber insurance premiums.For more information, please visit www.bitsighttech.com or follow us on Twitter (@BitSight).
ECS, an ASGN division, is delivering advanced solutions and services in cybersecurity, cloud, artificial intelligence (AI), machine learning (ML), application and IT modernization, and science and engineering. The company solves critical, complex challenges for customers across the U.S. public sector, defense, intelligence and commercial industries. ECS maintains partnerships with leading cloud, cybersecurity, and AI/ML providers and holds specialized certifications in their technologies. Headquartered in Fairfax, Virginia, ECS has more than 2,400 employees throughout the U.S. and has been recognized as a Top Workplace by The Washington Post for the last five years.
BigID aims to transform how enterprise protect and manage the privacy of personal data. Organizations are facing record breaches of personal information and proliferating global privacy regulations like the EU GDPR with fines reaching 4% of annual revenue.
Today enterprises lack dedicated purpose built technology to help them track and govern their customer data at scale. By bringing data science to data privacy, BigID aims to give enterprises the software to safeguard and steward the most important asset organizations manage: their customer data.
BigID has offices in the US and Israel and is founded by security industry veterans spanning the identity, data security, big data and governance markets.
CastleHill offers advisory, implementation, and managed services for Regulatory Change Management, Enterprise Risk Management, Third Party Risk Management, Compliance and additional Operational risk disciplines. Our structured approach to implementation and onboarding (Prototype-Iterate-Enhance) leverages best practice risk management process design, prototyping and iterative enhancement techniques that delivers rapid value. In addition, our GRC as a Service (GRCaaS) managed service helps simplify your risk management processes by providing options for outsourcing the costly administrative activities and technology support that distract risk managers from their primary job of managing risk. CastleHill team members average over 17 years of professional experience and act as Subject Matter Experts in two or more risk domains. We have a proven track record of departmental and enterprise GRC implementations using the RSA Archer and ProcessUnity platforms.
The FAIR Institute is an expert, non-profit organization led by information risk officers, CISOs and business executives to develop standard information risk management practices based on FAIR. Factor Analysis of Information Risk (FAIR) is a practical framework for understanding, measuring and analyzing information risk, and ultimately, for enabling well-informed decision making. Our goal is to establish and promote information risk management best practices that empower risk professionals to collaborate with their business partners on achieving the right balance between protecting the organization and running the business. Join the FAIR Institute today to learn about the industry's best practices; collaborate with other innovators to further advance the profession; and network with your peers to learn from their operational experiences.
KONEXUS provides a mobile extension to the RSA Archer platform that accelerates crisis resolution and business recovery by providing mobile, role-based access to the plans and critical content (even if Archer/network is unavailable), delivering actionable task lists to mobile teams, with real-time monitoring of completion/recovery status. KONEXUS also simplifies crisis/incident reporting from the scene, with situational intelligence delivered through automated escalation paths based on event type and role. Enhance collaboration with global/multi-lingual teams with in-stream translation of secure chat conversations, alerts, polls, and tasks. Monitor enterprise risk, assess and respond to reported events. Alert site users and mobile travelers in map selected areas to quickly account for safety and status.
Optiv is a market-leading provider of end-to-end cyber security solutions. We help clients plan, build and run successful cyber security programs that achieve business objectives through our depth and breadth of cyber security offerings, extensive capabilities and proven expertise in cyber security strategy, managed security services, incident response, risk and compliance, security consulting, training and support, integration and architecture services, and security technology. Optiv has served more than 12,000 clients of various sizes across multiple industries, offers an extensive geographic footprint, and has premium partnerships with more than 350 of the leading security product manufacturers.
RiskRecon’s continuous monitoring solution delivers risk-prioritized action plans that enable precise and efficient elimination of your most critical third-party security risks. Only our SaaS service delivers the data-driven evidence necessary for you to rapidly pinpoint and remediate security weaknesses within a vendor and across your third-party portfolio.
Rather than simply provide a laundry list of issues, RiskRecon automatically quantifies and describes the true risks associated with every vendor’s IT assets. To determine risk, our solution employs passive, direct analysis of each organization’s Internet-facing systems to create detailed IT, security and asset valuation profiles. Using these profiles, RiskRecon automatically produces risk-prioritized plans based on the severity of security issues present and the impact if the system is compromised.
Security to the Fortune and Global 1000. We specialize in assessing and improving GRC programs, with a focus on developing roadmaps which help you to quickly implement tactical solutions, while also planning and reaching your strategic goals.
Our approach emphasizes knowledge transfer, clear documentation and ongoing operational support for GRC programs. We look forward to meeting you at the conference!
Templar Shield is a premier integrated risk management professional services firm that provides program advisory, technology enablement, and managed service solutions to enterprise and government organizations across North America.
Established in 2013, Templar Shield specializes in GRC strategy, program development, maturity & readiness assessments, platform implementation, optimization and systems integration.
Our three-tiered approach to managed services ensure your GRC program can continue to evolve through every changing regulatory compliance and emerging market trends. Our managed support services include up-to-date compliance regulation content and live industry information feeds, strategic implementation and systems integration, as well as custom training and on going Admin-on-Demand support services that promote vital platform adoption, system upgrades, bug fixes, and workflow enhancements to support your GRC program maturity goals.