Gartner kicked-off its global series of 2019 Security & Risk Management Summit Conferences last month in Washington, DC. It’s here where we receive direct feedback from both technology providers as well as end-users on emerging trends and technologies for security and risk management. More than 3,500 attendees participated in analyst sessions and meetings over 3 1/2 days. One of the major trends receiving overwhelming attendee support is that GRC (governance, risk and compliance) technology is quickly fading in use. Thus, we view GRC 2020 as the approaching year of final demise.
At the DC Summit, Gartner presented its long-held view and prediction that by 2021, 50% of large enterprises (greater than $1 billion in annual revenue) will use an IRM (integrated risk management) solution set rather than GRC to provide better decision-making capabilities (up from 30% in 2017). Evidence of this adoption continues to be found in our latest quarterly forecast for the IRM solution market (Gartner subscription required). The total IRM market for 2019 is $6.6 billion and on pace to grow to $8 billion by 2021.
Further supporting this trend are the views of conference attendees. In an informal survey of risk management technology providers and end-users, 98% agreed that GRC technology is outdated and fading in importance. So, this time next year, those still using GRC technology will be few and far between.
Looking forward to seeing our attendees at our upcoming Security & Risk Management conferences across the globe. If you attend, you may receive one of our now famous #dumpGRC giveaways!
Category: audit-and-risk audit-function-strategy-and-management audit-management audit-methodology-and-engagement-execution business-continuity-management compliance-management cyber-risk cyber-security digital-risk enterprise-risk-management enterprise-risk-management-program-management grc integrated-risk-management irm it-risk-management risk-assessment-process-and-methodologies risk-coverage risk-response-strategies
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.