IT Governance, Risk and Compliance (IT GRC) Annual Research Report Available for Free Download

Des Moines, IA, June 29, 2008 --( IT governance, risk and compliance (IT GRC) is about striking an appropriate balance between business reward and risk. The maturity of IT GRC practices for managing reward and risk has a direct impact on the organization. IT GRC encompasses the practices for delivering:

Greater business value from IT strategy, investment and alignment,
Significantly reduced business and financial risk from the use of IT, and
Conformance with policies of the organization and its external legal and regulatory compliance mandates.

While some of these practices involve continuous improvement to quality, others involve practices and capabilities that are known to be effective, along with objectives for what the organization wants to achieve. IT GRC energizes the entire organization to imagine what it can achieve, establishes methods for achieving their objectives, and demonstrates the practices that are proven to work for minimizing business and financial risk.

Fundamentally, IT GRC is about striking an appropriate balance between business reward and risk, enabling an organization to more effectively anticipate and manage business risk while more effectively delivering value for the organization.

The 2008 Annual Report, assembled from benchmark research conducted with more than 2,600 organizations around the World, reveals the IT GRC maturity profiles, business outcomes, capabilities and practices that are most responsible for influencing and impacting business rewards and risks.

Download your free copy of this report and webcast, visit

ComplyAssistant LLC
Gerry Blass