Gartner Blog Network


2 Success Factors Every Top IRM Tech Solution Must Deliver

by John A. Wheeler  |  June 29, 2018  |  Submit a Comment

Have you ever been driving your car down the road when you notice the ride is bumpier than usual? Or perhaps, the car strangely veers to the right or the left? These signs point to the fact that your wheels are not balanced and aligned properly. The same can occur for integrated risk management (IRM) technology customers.

Top IRM technology solutions deliver two success factors – balance and alignment – to customers seeking to add value to the business. How do they deliver these success factors? Like a car has four wheels, IRM technology solutions enable four primary business objectives – better performance, stronger resilience, greater assurance and more effective compliance.

IRMsuccessfactors

To succeed, IRM technology must help the business maintain balance across these objectives. At the same time, IRM technology must ensure the objectives remain in alignment with the risk management goals of key stakeholders such as the board of directors, senior executives, regulators and investors.

Gartner evaluates IRM technology solutions for balance by determining how well they enable the six primary IRM technology use cases:

  1. Digital Risk Management
  2. Vendor Risk Management
  3. Business Continuity Management
  4. Audit Management
  5. Corporate Compliance & Oversight
  6. Enterprise Legal Management

In addition, Gartner evaluates IRM technology solutions for alignment with the strategic, operational and IT/cybersecurity risk management goals by determining how well they deliver the five IRM critical capabilities:

  1. Risk and Control Documentation / Assessment
  2. Incident Management
  3. Risk Mitigation Action Planning
  4. Key Risk Indicator Monitoring / Reporting
  5. Risk Quantification & Analytics

30% of large enterprises (> $3B in annual revenue) are using IRM technology to maintain balance and alignment today and Gartner predicts that by 2021, 50% of large enterprises will use IRM technology solutions in a similar manner. Read more about the key technology providers of IRM technology in our recent publication, “Competitive Landscape: Integrated Risk Management Solutions” (Gartner subscription required).

Also, look for the publication of our upcoming Magic Quadrant for Integrated Risk Management and Critical Capabilities for Integrated Risk Management reports in the coming weeks. Gartner Magic Quadrant research methodology provides a graphical competitive positioning of four types of technology providers in fast-growing markets: Leaders, Visionaries, Niche Players and Challengers. As companion research, Gartner Critical Capabilities notes provide deeper insight into the capability and suitability of providers’ IT products and services based on specific or customized use cases.

Additional Resources

Category: audit-and-risk  audit-management  business-continuity-management  compliance-management  cyber-risk  cyber-security  digital-risk  enterprise-risk-management-program-management  integrated-risk-management  irm  legal-risk  operational-risk-management  risk-assessment-process-and-methodologies  risk-coverage  risk-management  risk-response-strategies  security  technology-and-emerging-trends  third-party-risk-management  

Tags: cybersecurity  integrated-risk-management  risk-management  

John A. Wheeler
Global Research Leader - Risk Management Technology
8 years at Gartner
30 years IT Industry

John A. Wheeler is global research leader for risk management technology solutions and professional services. His areas of specialty include integrated risk management, executive leadership and corporate governance. Follow him on Twitter @JohnAWheeler Read Full Bio




Leave a Reply

Your email address will not be published. Required fields are marked *

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.