This past week, I enjoyed meeting with over 1,000 attendees at our annual Gartner Security and Risk Management Conference in London. At the event, the overwhelming feedback received is that integrated risk management (IRM) is needed now more than ever. Included in that feedback is the fact that technology providers see a rapid increase in IRM customer demand. The obvious question is “why?”.
Well, it all stems from an increasing focus on emerging technologies to fuel business growth. In our annual 2019 CEO Survey, 82% say that their companies have a management initiative or program in place to make the business more digital – see graphic below.
As these companies become more digital, the blurring of the risks associated with people, process and technology grows. IRM technology providers are ideally suited to provide CEOs and their team with the visibility and understanding of this myriad of risks across the strategic, operational and technology spectrum. Why are they ideally suited for this challenge? It’s due to the fact that they offer solutions that bring together the needs to stay “in business” and “out of trouble” – see graphic below.
Legacy GRC technology providers only perform well at keeping the business “out of trouble” due to their compliance-driven focus. However, IRM technology providers provide a wider focus on the emerging technology risks associated with digital business, vendors/third-parties and business continuity. This is why technology providers and their customers are looking to #dumpGRC and #getIRM. It’s also why I will be leading a new research initiative in 2020 labeled “Gartner Emerging Technology & Integrated Risk Management” or simply “GETIRM”. Stay tuned and look for more updates via Twitter and LinkedIn under #getIRM.
View Free, Relevant Gartner Research
Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.Read Free Gartner Research
Category: audit-and-risk audit-management business-continuity-management compliance-management cyber-risk cyber-security cyberinsurance digital-risk enterprise-risk-management enterprise-risk-management-program-management risk-assessment-process-and-methodologies risk-coverage risk-response-strategies
Tags: cybersecurity digital-risk-2 digital-risk-management erm grc integrated-risk-management irm risk-management
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.