Introduction
At a time of high risk exposure, specialized businesses and multi applicative environnements, it is key to have simple and efficient operating procedures in an organisation that are aligned with external audit and regulatory requirements.
Governance, risk and compliance (GRC) consists in managing risks, comply with regulations and protect the assets and reputation of a company as well as improving internal processes.
As the GRC tools are in constant evolution, we are following the market evolution and new actors in order to identify the best fit for our customers. We are also paying particular attention to regulatory évolutions to stay up to date.
The GRC experts at Artimis offer a set of skills and knowledge accross the different tools on the market to fit your complex stakes. Our approach consists in helping out companies when it comes to evaluating current processes and recommend custom fit improvements to each specific organization.
You will find most of the applications we have expertise in and can implement. These applications are split into different segments :
Sarbanes-Oxley and the financial security law
Sarbanes-Oxley (SOX):
Sections 409 and 404 are particularly demanding in terms of Internal Control over IT processes.
Section 409 requires rapid account closure, while 404 covers a range of internal control requirements for information systems.
Some examples: password management, access authentication, access management, infrastructure, segregation of duties, etc.
Financial Security Act (FSA):
France’s Financial Security Act is a successor to SOX, dating from 2003 and known as the Mer Act. It is applicable to all anonymous societies and to all companies making public offerings.
It includes various components, mainly concerning executive directors’ responsibility, the reinforcement of governance around internal control and the reduction of sources involving conflicts of interest.
ArtimIS helps you comply with regulations
Implementation services
Business performance management and risk management are key stakes for CFOs and financial departments.
Risk governance and internal control are key to regulatory compliance, business continuity and business performance.
The GRC solutions (Governance, Risk & Compliance) enable automatised control of your processes.
ArtimIS supports you in the design and implementation of your GRC solution. Our know how, our different accelerators and our benchmarks will ensure you to get the best fit from a solution standpoint.
Entreprise Risk Management
SAP GRC
Access Control,
Cloud IAG,
DAM by NextLabs,
AVM,
ID Management/SSO
Oracle Risk Management
Advanced Financial Control
HighBond by Galvanize
ComplianceBond,
ControlsBond,
RiskBond,
AuditBond,
Fraudbond,
ACL Robotics
Security Weaver
Process Auditor,
Compliance Support,
Contract Compliance
EYE2SCAN
Audit Management,
Internal Control Management,
Continuous Control Monitoring
Access Governance
SAP GRC
Access Control,
Cloud IAG,
DAM by NextLabs,
AVM,
ID Management/SSO
ERP Maestro
Access Analyzer,
Access reviewer,
Emergency Access,
Automated Provisioning
SIVIS
Alert Manager,
Compliance Manager,
Emergency Manager,
Identity Manager
ACL by Galvanize
ARO & ASR (developed by ArtimIS based en ACL Technology) for SoD risk Identification & Self Remediation
Security Weaver
Separations Enforcer,
Automated Mitigations,
Secure Provisioning,
Emergency Repair,
RLM
Sentri for Oracle
Cloud ERP
SOD Monitor,
Access Violation Manager,
Access Provisioning & De-Provisioning,
Self -Service Access Request,
Access Certification
Oracle Risk Management
Cloud
Advanced Access Control AAC
Cyber Security and Data Protection
SAP GRC
Entreprise Threat Detection,
Enterprise Digital Rights Management by NextLabs,
UI Field Masking & UI Logging,
Code Analysis,
Fortify by Micro Focus
Highbond by Galvanize
CyberBond,
ITGRCBond,
IncidentBond,
ContinuityBond (RSAM)
Légende:
Trainers
Experts
Confirmed
Trained
Change Management
Change is never easy. Changing tools and processes is affecting massively operating end users, management up to the board.
The change of tools and processes needs to be proactively managed to ensure the impact on end users and business process linked to a transformation are seen as an advantage and are well adopted.
The good news is these stakes are forecastable. The Artimis GRC transformer team has been facing a variety big challenges accross different customers and has helped out big organisations managing a successful turnaround when it came to implementing GRC processes. At a time of constant change, Artimis works in collaboration most strategic GRC actors to provide most accurate support to our customers.
Usage and approbation
Technology can make employees more productive, can improve processes and can secure data. Without an activation stragegy, strong sponsoring, and approbation of end users, it is fairly unlikely for a new process/tool to be fully adopted whatever the scope.Usage and approbation
The ArtimIS team combines great experience in technological topics aswell as in depth understanding of change management and how to get buy in from stakeholders accross an organisation. We are evaluating new software, hardware and processes associated to them and impact on end users. We try to leverage approbation and to avoid process failure or lack of adherence of end users. The acceptance of change is key to maximize the value of a GRC project and involves key communications and training across the organization.
Project management
Due to economical and commercial uncertainty as well as changing regulatory requirements and continuous technological innovation, companies are struggling to manage their projects within a certian time frame and a certain budget.Project management
We are bringing broad experience in project management at a variety of scales and accross very different sectors.
Our process is guided through live prevision of project related risks and uses information enabling optimized planification and execution. Flexibility is key to us in the way, the location and the people we are working with. We are very agile in order to adapt to commercial and organizational needs and create long term value to your organization.
The Artimis experts adapt to new best practices accross the market when it comes to change management including communication, animations, and project management related to GRC expertise. We are willing to avoid old school minutes, 150 slides powerpoint trainings etc – our GRC transformers aim at using inovative and intuitive solutions to accelerate buy in and approbation of change by the organization
Some examples of key activities performed by our GRC Transformers when it comes to change management:
Why ArtimIS?
Our constant technological standby enables to us to be up to date when it comes to providing fitted GRC tools depending on the customer needs. The panel of options enables us to adapt to our customer’s specificities and to adapt our answer to their needs.