2014 08 11_combionic_grc_introduction

© Combionic | DR.-ING. KARL-HEINZ STERNEMANN | July 2014 Version: 8/12/2014 12:17:34 PM

GRC

ComplianceThe Turning Point:

compliance newly thought-out


AGENDA: COMPLIANCE

Customer Benefit

Current State

Combionic Capabilities

Innovation, Technology & Product

Summary

The Turning Point:

compliance newly thought-out: smartWorking4compliance

Introduction


NEW WAY OF WORKING

SOCIAL BUSINESS COLLABORATION

COMBIONIC ‘s uspIn an enterprise one smart application platform but easily adaptable for multiple solutions for a variety of businesses.

Our fundamental philosophy: Activate human knowledge as well as imagination and combine these potentials withcomputing power to an innovative and unique context based enterprise solution.Our solutions support humans with global views on relevant information and documents, provide options to act in the context of day-to-day situations and their working tasks. E.g. automated audit-trails for Compliance or SEC-reporting per rules based editing for Legal.

Combine Context Aware Computing powerwith

human knowledge and imagination

You want to be a

Brain-Aware-Enterprise*?


NEW WAY OF WORKING

SOCIAL BUSINESS COLLABORATION

Content Life Cycle

Management

Compliance Life Cycle

Management

Big Data

Integration by ContextCombionic ‘s solution components are embedded in the daily-work-environment – integrated in the context the users are working in.Our solution uses patented context recognition & semanticcomponents. CONTEXT AWARE COMPUTING * is fully supported inMicrosoft Office Applications as Word, Excel or Microsoft Outlook.

Software for HumansWe combine human intelligence, creativity and imagination withcomputing capabilities to accomplish intelligent work-places:

Improve productivity and collaboration Save time and costs Reduce risks and modernize processes

Improve the quality of your Big DataWe are able to support your Big Data processing resp. your businessapplications. We provide your relevant data downstream using ourautomated active content services, e.g. downstream directly from acontent element like your contract-files resp. single data, text,words or phrases therein..


AGENDA: COMPLIANCE

Customer Benefit

Current State



Summary

The Turning Point:

compliance newly thought-out: smartWorking4compliance

Introduction


The solution is an all in one and one for all solution.

Accessible via multiple devices. Content of policies, procedures, contracts and other specifictext components is likewise accessible by PCs, Tablets, Smartphones for all users.

Use of well known tools only. The solution performs in Microsoft Word, Excel or PowerPoint,being integrated in communication tools like Microsoft Outlook and Lync.

‘Application hopping’ not necessary. The solution directly processes all related policies anddirectly accesses all provided text components in its prevailing set-up

‘Dino-Applications’ not necessary. No proprietary user interfaces are needed, no additionaltraining necessary.

It suits authors as well as users of policies, compliance documents, procedures, manuals, etc..

CUSTOMER BENEFIT: EASY TO USE


Solution uses structured templates, but allows free text as well; a tool that does thestructuring and formatting of text almost automatically

“Silence is approval”: workflows are approved either by staff or timestamps

Escalation processes to dismantle faltering workflows

The capabilities of dashboards in Microsoft Office provide management with an immediateoverview on the status of new compliance document pipelines

Compliance is given by almost automated audits support trough tracking of all user or systemactivities and automated versioning of content

CUSTOMER BENEFIT:EXCEPTIONAL FUNCTIONALITIES


AGENDA

Customer Benefit

Current State



Summary

Introduction


CURRENT STATE: MISALINGED TECHNOLOGY

Alignment of Technology with Current GRC Needs (Governance, Risk Management and Compliance):

Organizations are realizing that the highmisalignment of technologies indicates thedemand for very agile and dynamic GRCinformation.

Furthermore in all day-to-day working taskstechnology architecture has to be integrated inorder to align distributed systems and contentfeeds.

At the end of the day advanced reports shall beprovided on the state of GRC plus their impacton the strategy of the organization, itsperformance, objectives and integrity.

accordingly to:


CURRENT STATE: E-MAIL APPROACH

Utilization of GRC Technology in the Environment:

The majority of solutions in place for GRC focus onissues or departments

They are not integrated, stand alone solutions.

This set-up determines misalignment in the GRCtechnology, despite it is meant to meet the currentneeds correctly by spreadsheets, e-mails resp. otherseparate documents.

The approach is labor intensive, inconsistent, complex,frustrating, lacking proper workflow or task manage-ment. It does not defend anything.

accordingly to:


FUTURE STATE: EASE OF USE

PAST:Top criteria that influenced choice of

current GRC solutions:

FUTURE:Top criteria for acquiring new

solutions for GRC:

GRC challenges require advanced intelligence for situational and holistic awareness of risk resp. regulatory environments and of business dynamics.

Necessary changes will primarily be driven by the lack of functionality of the current GRC technology, by the request for integration of day-to-day working tasks and by the users’ preference for ease-of-use.

accordingly to:


AGENDA

Customer Benefit

Current State



Summary

Introduction


smartWorking4compliance:

Usage Retention

Structured referencing Transparent retention & compliance

Controlled Policy lifecycle

Guided Collaboration

Transition Transition

Authoring

Design Policies Use Policies Manage Policies

Few people are creating Policieswith Microsoft Office

All employees have to use and live with Policies in their daily working environment e.g. Microsoft Office.

Persisted in Microsoft Server/Backend Infrastructure


Meet Laws&

Regulatory Standards /Obligations

ACHIEVE COMPETETIVE ADVANTAGE

Establish Business Context for Compliance &

to integrate in employees day-to-day working tasks and environments

Implement Metrics &

Track Operational Controls

Analyze & Define & Create &

Implement Policies, Procedures, Standards


Meet Laws&

Regulatory Standards /Obligations


United States of America ‘s most important paperwork workload more than 10 billion hours since 2009 more than 150 new major rules in 2013 more than 3.600 new rules (10 /day) in 2014 projected costs of more than $ 120 billion

Strengths of Combionic

supporting identification of issues

analyzing available and used sources regarding change of possible input incl. change tracking

identifying relationships between laws, regulations as well as standards and compliance documents like policies, procedures, manuals, etc. .

identifying relationships between laws, regulations and standards and the available compliance documents resp. their content parts, clauses, languages etc.

supporting an Internal Controls System (ICS) by summarizing the questions that are related to the upcoming task flows (OpRisk, COSO Framework, COBIT, MOF [Microsoft Operation Framework], ITIL)

related capabilities are e.g.:

reporting, which policies are reflecting Anti Money Laundering (AML) regulations?

reporting, which policy refers to AML or especially which policy describes AML in parts of the content or in clauses?




Technically integrated in the Microsoft Office Applications Word, Excel, Power Point as well as Outlook the following capabilities are available:

Recognition and semantic services to provide Compliance information in Users day-to-day working tasks without application hopping

Providing structured parts and content parts relevant in context , e.g. Do's & Don'ts or who has to approve, which documentation has to be used, e.g. MiFid customer documentation

AUDIT relevant track & trace capabilities

Providing relevant content parts or data fields downstream to business applications

identifying relationships of laws, regulations and standards to compliance documents resp. their content parts, clauses, languages etc. as part of contract life cycle management




Establish Business Context for Compliance &

to integrate in employees day-to-day working tasks and environments




Technically integrated in the Microsoft Office Applications Word, Excel, Power Point and Outlook Combionic provides the following capabilities:

Issue identification

Request, Creation Process, and Life Cycle Management

Policy analysis

Policies, procedures, manuals – developing, creating, writing, improving

Consulting incl. covering the entire process, coordinating experts, supporting the decision-making

Implementing and publishing




Analyze & Define & Create &

Implement Policies, Procedures, Standards




Technically integrated in the Microsoft Office Applications Word, Excel, Power Point and Outlook Combionic provides the following capabilities:

Relevant track & trace capabilities for automated AUDIT

Content Parts and Data Fields services to support down streaming to Business Applications and Compliance Control services

Support of Internal Controls System (ICS) by summarizing the questions that are related to the upcoming task flows (OpRisk, COSO Framework www.coso.org , COBIT, MOF [Microsoft Operation

Framework], ITIL)

Continuous Control Monitoring (CCM) – “Real-time” protection definitions for Transactional Systems monitoring; http://www.gartner.com/it-glossary/continuous-controls-monitoring-ccm

Dashboard in Microsoft Office to provide Management views

Implement Metrics &

Track Operational Controls

Visibility Analysis Action Metrics

http://www.coso.org/

http://www.gartner.com/it-glossary/continuous-controls-monitoring-ccm


AGENDA

Customer Benefit

Current State



Summary

Introduction


New Paradigm:

Context Aware Computing & Services based solutions,

instead of application Dino’s <> smartWorking4compliance


smartWorking4compliance:

Usage Retention

Structured referencing Transparent retention & compliance

Controlled Policy lifecycle

Guided Collaboration

Transition Transition

Authoring

Design Policies Use Policies Manage Policies

Few people are creating Policieswith Microsoft Office

All employees have to use and live with Policies in their daily working environment e.g. Microsoft Office.

Persisted in Microsoft Server/Backend Infrastructure


Request-1

Validation-3

Initiator(Any Employee)

Drafting-4

FunctionalReview-5

Sign-Off-8

Translation-9

Final Review-10

Intranet

New

Consuming

2y Renewal

Library

Update

Policy &Training

Experts

GeneralCounsel

PolicySigner

PolicyDesk

PolicyDesk

MandatoryConsultation-7

MyPoliciesReviewer

Line Manager

PolicyCommittee

ProofReader

FunctionalHead

Author + SME LECH

Division Check-2 Gatekeeper

Division Review-6

Author + SME LECH

Author + SME LECH

Author

Author

Author

Customer Sample: MyPolicies Pipeline

Gatekeeper

Author + SME LECH


Customer Sample: MyPolicies Pipeline


USE WHAT YOU ALLREADY HAVE …

{ optional}

smartWorking4compliance

or or

or

OBG

Microsoft Office

&

Deployed: on-premise or hybrid solution or cloud based

Documents persisted on: or …


AGENDA

Customer Benefit

Current State



Summary

Introduction


VOICE OF CUSTOMER

Solution highlights to meet expectations:

Policy Authoring:

Request Management with attachments and discussions

Traceable Process Monitoring with approval, reject and escalation

Dynamic Workflow Staffing

Template based Drafting

Content classification and reuse of text containers

Traceable Feedback/Answer loops with Subject Matter Experts

References to legal and regulator rules

Automated renewal process

Policy Consuming:

Close integration in working environment (Outlook, MS-Office, Browser)

Context based recognition & semantic search

Filtering by relevant information types

Provides relevant action options

Structured publishing of relevant content pieces on multiple devices

Close iDesktop/Office

integration

Context based

working

100% Compliant


Conclusion of Combionic ’s approach

Reduce process cycle time

Increase accuracy with automated processes

Improve monitoring throughout the contract lifecycle

Ensure adherence to terms and conditions

Enforce contract standardization trough templates and text components

Eliminate evergreen agreements

Take advantage of contract incentives

Full fill compliance

VOICE OF CUSTOMER

Bring solutions close tothe user

Be prepared for

mobility


SUMMARY

By compliance-at-you-fingertips you use being compliant as a competitiveadvantage!

Our new customers have experienced that none of the competitive solutionsdirectly support people in their day-to-day business. Neither providing integrationinto their primarily used Office applications, nor as a tool being part of the contextin a dedicated situation!

VOC: “All other solutions are showing us the ‘old fashioned’ GRC apps; technologydriven, focused on automated checks and control, based on theoretical workflowsand rules engines without the urgently needed human support in a fast changingworld.”

All competitors have built their more or less “cumbersome” application withspecific clients or browser access.

Where people have to jump onto the dedicated clients to find and to read whole documents “only” to get the relevant input.

Combionic makes the difference by a competitive edge by smartWorking4policies


Contact: Dr.-Ing. Karl-Heinz Sternemann, e-mail: [email protected], phone: +49 30 8321 7950

mailto:[email protected]


WAS THIS HELPFUL?

Please let me know:

[email protected]

Contact us:

+49 (0) 30 8321 7950

Also find us on the web:

www.combionic.com

https://www.facebook.com/combionic

https://twitter.com/Combionic

http://combionic.wordpress.com/

Follow us:

mailto:[email protected]

http://www.combionic.com/

https://www.facebook.com/combionic

https://twitter.com/Combionic

http://combionic.wordpress.com/

2014 08 11_combionic_grc_introduction

Documents

Transcript of 2014 08 11_combionic_grc_introduction