Gartner Blog Network

Gartner Expands Coverage of GRC Technologies

by John A. Wheeler  |  January 21, 2015  |  5 Comments

Gartner’s Chief of Research for Risk & Security, Paul Proctor, announced a year ago that Gartner had reset its approach for analyst coverage of Governance, Risk & Compliance (GRC) technologies. After a year of effort transforming our approach, we are expanding our coverage to include additional new research deliverables in 2015. I worked with Paul and our GRC analyst team to architect our expanded coverage in alignment with Gartner’s pace-layering approach for building a GRC Application Strategy. See my research note on “How to Use Pace Layering to Build a GRC Application Strategy” to learn more.

In 2014, we published the following GRC related deliverables under the respective analyst leadership:

In 2015, we plan to publish the following additional GRC related deliverables under the respective analyst leadership:

In addition, we will be developing additional coverageĀ in 2015 of targeted GRC topics with our Gartner for Technical Professionals (GTP) analyst team as well as GRC market sizing and trend analysis with our Gartner Technology & Service Providers (T&SP) team. Our complete planned coverage and associated lead analysts are provided below.

GRC coverage 2015 v2

If you are a vendor in one of these GRC market segments and want to learn more about our expanded coverage, please tweet me at @JohnAWheeler or schedule a vendor briefing with our Vendor Briefings team by emailing

Additional Resources

View Free, Relevant Gartner Research

Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.

Read Free Gartner Research

Category: audit-management  business-continuity-management  compliance-management  cyber-risk  cyber-security  digital-risk  enterprise-risk-management  grc  information-technology  it-risk-management  it-vendor-risk-management  legal-risk  operational-risk-management  risk-management  security  sod-continuous-control-monitoring  third-party-risk-management  

Tags: analytics  audit-management-2  big-data  business-continuity  compliance  cyber-risk-2  digital-business  digital-risk-2  enterprise-risk  enterprise-risk-management-2  gartner  grc  grc-software  legal-management  operational-risk-management  risk-management  vendor-risk  

John A. Wheeler
Global Research Leader - Risk Management Technology
9 years at Gartner
30 years IT Industry

John A. Wheeler is global research leader for risk management technology solutions and professional services. His areas of specialty include integrated risk management, executive leadership and corporate governance. Follow him on Twitter @JohnAWheeler Read Full Bio

Thoughts on Gartner Expands Coverage of GRC Technologies

  1. Brian Iverson says:

    We’re also doing a Market Guide for SOD Controls Monitoring that should be published by the end of first quarter this year.

  2. Sylvie Marienstras says:


    We are very interested by your Market Guide for SOD Controls Monitoring.
    Is it available and if yes, under what reference can it be found / Bought ?

    Thanks in advance !

  3. Yann-Philippe Tequi says:


    We are very interested by your Market Guide for GRC Software Platforms .

    Is it available and if yes, under what reference can it be found / Bought ?

    Thanks in advance !

  4. Martin Dreyer says:

    Typo in the picture “IT Vendor Management” should just be “Vendor Management”, right?

Leave a Reply to Martin Dreyer Cancel reply

Your email address will not be published. Required fields are marked *

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.