Home / Risk Management and Compliance / Governance, Risk, and Compliance (GRC)

Governance, Risk, and Compliance (GRC)

Master governance, risk, and compliance for robust business protection and strategic advantage.

Try these 273 AI Governance, Risk, and Compliance (GRC) Tools

MARS Suite
Free
Governance, Risk, and Compliance (GRC)

MARS Suite View MARS Suite

MARS Suite is an integrated platform revolutionizing cyber protection and compliance management. Designed for efficiency, it consolidates disparate GRC tools into a single, intuitive dashboard, empowering organizations to proactively identify and mitigate critical risks. Streamline your security posture, ensure continuous compliance, and gain operational resilience with this all-in-one solution.

Integrated GRC Dashboard
Proactive Risk Identification
Automated Compliance Monitoring
Maxxsure
Free
Governance, Risk, and Compliance (GRC)

Maxxsure View Maxxsure

Maxxsure empowers executive leadership with a proprietary platform designed to comprehensively identify, measure, and score cyber risks across all business facets, including intricate vendor and supply chain dependencies. Our solution quantifies cyber threats in business-relevant terms, illustrating an organization's preparedness and resilience while estimating potential financial losses and identifying critical cyber insurance coverage gaps. By providing a defensible framework for strategic risk management decisions, Maxxsure enables executives to optimize cyber investments and align security initiatives directly with business objectives.

Proprietary cyber risk identification, measurement, and scoring
Discovery of hidden risks in business models, vendors, and supply chains
Assessment of cyber event preparedness and resiliency
MetaCompliance
Free
Governance, Risk, and Compliance (GRC)

MetaCompliance View MetaCompliance

MetaCompliance is a leading cybersecurity and compliance firm with over 18 years of expertise, dedicated to transforming organizational culture and safeguarding critical data. Our innovative platform offers a unified solution for information security awareness training, incident management automation, and comprehensive management of people-related risks in cybersecurity, data protection, and regulatory compliance. Empower your organization with personalized training modules, robust policy management, and advanced phishing simulations to build a resilient defense against evolving cyber threats.

Information Security Awareness Training
Automated Incident Management
Cyber Security Risk Management
Metrics that Matter (MTM)
Free
Governance, Risk, and Compliance (GRC)

Metrics that Matter (MTM) View Metrics that Matter (MTM)

Metrics that Matter (MTM) is a premier AI-driven cybersecurity platform that transforms how organizations understand and manage their digital risk. We provide unparalleled clarity into the true value of your organizational data to threat actors and the potential financial ramifications of security incidents. MTM empowers you to make data-backed decisions, optimize your cybersecurity posture, and maximize your return on investment by focusing resources on the most critical threats and vulnerabilities.

AI-powered asset valuation to understand criminal interest
Financial impact analysis of potential data breaches
Prioritized, actionable recommendations for security investments
MetricStream
Free
Governance, Risk, and Compliance (GRC)

MetricStream View MetricStream

MetricStream empowers modern and digital enterprises to master Governance, Risk, and Compliance (GRC) through its market-leading enterprise and cloud applications. Enhance your risk management, regulatory adherence, vendor governance, and quality processes while simultaneously boosting business performance. Our integrated GRC Journey methodology unifies GRC technologies and programs across business, IT, and security, enabling organizations to achieve a state of pervasive GRC.

Enterprise and Cloud GRC Applications
Strengthened Risk Management
Regulatory Compliance Management
ModelOp
Free
Governance, Risk, and Compliance (GRC)

ModelOp View ModelOp

ModelOp is the premier AI Governance platform designed to comprehensively secure and manage all enterprise AI initiatives, from generative AI and LLMs to in-house and third-party systems. By leveraging automation and seamless integrations, ModelOp empowers organizations to proactively address critical governance and scalability challenges, ensuring responsible AI deployment without hindering innovation. This enables businesses to unlock the full transformative potential of AI while maintaining robust protection and compliance for all stakeholders.

Comprehensive AI governance for generative AI, LLMs, and all AI systems.
Automated compliance and risk management for AI initiatives.
Scalable AI deployment and monitoring capabilities.
Modulo Security
Free
Governance, Risk, and Compliance (GRC)

Modulo Security View Modulo Security

Modulo Security delivers automated Governance, Risk, and Compliance (GRC) solutions, leveraging over 28 years of industry leadership. Our comprehensive platform empowers organizations across diverse sectors and government entities to effectively manage cybersecurity, threat management, and risk.

Automated GRC Workflow Management
Comprehensive Risk Assessment Tools
Cybersecurity and Threat Intelligence
Mondoo
Free
Governance, Risk, and Compliance (GRC)

Mondoo View Mondoo

Mondoo is an eXtensible Security Posture Management (XSPM) platform that provides comprehensive security, compliance, and asset inventory. It empowers organizations to proactively uncover vulnerabilities, track assets, and enforce policy compliance across their entire infrastructure. Built on transparent, open-source components like cnquery and cnspec, Mondoo offers deep visibility and control, enabling seamless integration into developer workflows to significantly reduce cyber risk and improve security posture.

Comprehensive Security Posture Management (XSPM)
Automated Vulnerability Detection
Real-time Asset Inventory & Tracking
Moxso
Free
Governance, Risk, and Compliance (GRC)

Moxso View Moxso

Moxso empowers organizations to cultivate a robust security culture by delivering engaging and effective employee awareness training designed to foster safe behavior and minimize cyber risks stemming from human error. Our comprehensive, all-in-one platform integrates dynamic, gamified micro-learning modules, real-time breach monitoring, and realistic phishing simulations, all delivered seamlessly to employee inboxes. By prioritizing user experience over traditional, text-heavy methods, Moxso ensures continuous, adaptive learning that genuinely resonates with your team, making cybersecurity an intuitive part of their daily operations.

Engaging Gamified Micro-Learning
Behavior-Changing Security Training
Real-time Breach Monitoring
MyCISO
Free
Governance, Risk, and Compliance (GRC)

MyCISO View MyCISO

MyCISO is a pioneering SaaS platform designed to democratize cybersecurity management for organizations of all sizes. It empowers businesses to comprehensively assess, enhance, and manage their security posture while facilitating compliance with chosen frameworks. By automating complex tasks and providing robust metrics for maturity tracking, MyCISO significantly improves efficiency and effectiveness for security teams worldwide.

Comprehensive Security Posture Assessment
Security Improvement Planning & Execution
Regulatory Compliance Management (GRC)
Naq Cyber
Free
Governance, Risk, and Compliance (GRC)

Naq Cyber View Naq Cyber

Naq Cyber provides an all-in-one platform designed to empower Small to Medium-sized Enterprises (SMEs) in achieving legal compliance and safeguarding against cyber threats. We simplify the complexities of data protection and regulatory adherence, including GDPR compliance, allowing business owners to focus on growth while we manage risk.

Automated GDPR compliance management
Comprehensive cybercrime protection tools
Risk assessment and mitigation strategies
NARIS
Free
Governance, Risk, and Compliance (GRC)

NARIS View NARIS

NARIS GRC provides an integrated Governance, Risk, and Compliance platform designed to empower organizations in proactively managing risks and capitalizing on strategic opportunities. Our human-centric, data-driven approach simplifies GRC implementation across your entire business, transforming every individual into an effective risk manager. Leverage our expertise to enhance trust, elevate your reputation, and achieve your company goals with confidence.

Integrated GRC Platform
Proactive Risk Management
Opportunity Development
National Information Technology Development Agency (NITDA) - Nigeria
Free
Governance, Risk, and Compliance (GRC)

National Information Technology Development Agency (NITDA) - Nigeria View National Information Technology Development Agency (NITDA) - Nigeria

The National Information Technology Development Agency (NITDA) spearheads Nigeria's digital transformation by establishing and enforcing a comprehensive framework for IT development and regulation. Committed to the Nigerian National Information Technology Policy, NITDA focuses on advancing developmental regulation, fostering digital literacy and skills, and promoting robust infrastructure. Their strategic priorities encompass solidifying service and software infrastructure, developing digital services, cultivating a digital society, and championing emerging technologies alongside indigenous content adoption to drive innovation and national growth.

Framework for IT Planning and Research
Standardization of IT Practices
Regulation of Information Technology
National Institute of Standards & Technology (NIST) - USA
Free
Governance, Risk, and Compliance (GRC)

National Institute of Standards & Technology (NIST) - USA View National Institute of Standards & Technology (NIST) - USA

The National Institute of Standards and Technology (NIST) is a premier non-regulatory scientific agency within the U.S. Department of Commerce dedicated to advancing measurement science and promoting innovation. NIST sets critical standards and develops guidelines for information technology and cybersecurity, fostering the creation of reliable, usable, interoperable, and secure systems. Their research and development efforts in mathematics, statistics, and computer science provide the foundational infrastructure for emerging technologies and applications, driving progress across industries.

Develops authoritative cybersecurity frameworks and guidelines
Conducts research in advanced IT applications like biometrics
Establishes measurement standards for emerging technologies
NAVEX Global
Free
Governance, Risk, and Compliance (GRC)

NAVEX Global View NAVEX Global

NAVEX Global offers a comprehensive, cloud-based GRC platform designed to streamline your entire risk and compliance program. Our integrated solution empowers organizations to proactively anticipate and manage global regulatory requirements, automate complex processes, operationalize data insights, and gain real-time risk visibility. With a focus on enhanced accessibility, clear communication, and effective change management, NAVEX Global transforms risk management into a strategic advantage.

Scalable cloud-based GRC platform
Integrated compliance management software
Automated process execution
Ncontracts
Free
Governance, Risk, and Compliance (GRC)

Ncontracts View Ncontracts

Ncontracts empowers organizations to proactively manage risk and compliance through a comprehensive suite of integrated solutions. Leveraging deep industry expertise and cutting-edge technology, our platform streamlines complex GRC processes, enhances cyber resiliency with automated assessments and remediation tracking, and ensures regulatory adherence. Partner with Ncontracts to identify vulnerabilities before they escalate, boost operational efficiency, and safeguard your business against emergent threats.

Automated cybersecurity risk assessment and gap analysis
Streamlined remediation assignment and tracking
Proactive vulnerability detection
NeoGuardian
Free
Governance, Risk, and Compliance (GRC)

NeoGuardian View NeoGuardian

NeoGuardian redefines cybersecurity for modern enterprises by integrating innovative technologies and a business-centric approach to elevate your security posture. We specialize in transforming your defenses into a strategic advantage, offering comprehensive solutions for governance, privacy, attack simulation, and cloud security to proactively safeguard your critical assets against evolving cyber threats.

Strategic Cybersecurity Alignment with Business Goals
Advanced Realistic Attack Simulation for Vulnerability Discovery
Comprehensive Cloud Environment Security and Risk Detection
Netsurit
Free
Governance, Risk, and Compliance (GRC)

Netsurit View Netsurit

Netsurit is your strategic partner for comprehensive managed IT, cloud, and security services, accelerating your digital transformation and IT innovation. Since 1998, we have pioneered IT outsourcing, ensuring clients remain secure against current and future cyber threats with our advanced cybersecurity solutions. Trust Netsurit to fortify your network and data with industry-leading software and expert services, including specialized GRC platforms like ZenGRC and robust security management for HPE Non-Stop environments with XYPRO.

Managed IT Services
Cloud Solutions
Advanced Cybersecurity
Neupart
Free
Governance, Risk, and Compliance (GRC)

Neupart View Neupart

Neupart Secure ISMS is a comprehensive Information Security Management System designed to streamline your compliance and risk management efforts. Available as a flexible SaaS or on-premise solution, Neupart empowers organizations to efficiently manage policies, risks, and audits, establishing a robust and defensible standard of care. Its advanced content engine seamlessly integrates and maps diverse control frameworks, enabling you to adapt to evolving regulations and proactively future-proof your compliance program.

Cloud-based or on-premise SaaS deployment
Extensive library of pre-built security policies
Automated risk assessment and IT audit lifecycle management
NITA Uganda (NITA-U)
Free
Governance, Risk, and Compliance (GRC)

NITA Uganda (NITA-U) View NITA Uganda (NITA-U)

NITA Uganda (NITA-U) is instrumental in Uganda's transition to an e-government era, establishing a robust Information Security Framework to safeguard digital information across public and private sectors. This framework provides essential policies, standards, and guidelines for comprehensive Information Assurance. NITA-U also operationalizes the National Information Security Advisory Group (NISAG), a crucial multi-stakeholder body that offers expert guidance on Information Security Governance, Risk Remediation Planning, and Incident Response.

National Information Security Framework
Information Assurance Policies and Standards
Government E-transition Support
NopSec
Free
Governance, Risk, and Compliance (GRC)

NopSec View NopSec

NopSec delivers automated IT security control measurement and risk remediation, empowering organizations to proactively safeguard their digital assets. Their flagship SaaS platform, Unified VRM, employs advanced passive analysis, active exploitation, and contextual enrichment to provide a clear visual forecast of threat risks. This enables security teams to dramatically accelerate the remediation of critical vulnerabilities across their entire infrastructure and application landscape.

Automated IT security control measurement
Proactive risk remediation solutions
Unified VRM SaaS platform
Nova Leah
Free
Governance, Risk, and Compliance (GRC)

Nova Leah View Nova Leah

Nova Leah empowers connected medical device manufacturers to navigate complex cybersecurity compliance mandates with automated, end-to-end solutions. We address the growing vulnerabilities in connected medical devices by providing a robust framework for establishing and sustaining a strong cybersecurity posture throughout the entire product lifecycle. Our expertise and innovative technology are dedicated to ensuring the development and maintenance of secure medical devices, simplifying regulatory adherence for our clients.

Automated cybersecurity compliance management for connected medical devices
End-to-end product lifecycle security solutions
Proactive risk mitigation against evolving cyber threats
OASIS Open
Free
Governance, Risk, and Compliance (GRC)

OASIS Open View OASIS Open

OASIS Open is a globally recognized non-profit consortium driving collaborative innovation in open standards and open source software. We empower individuals, organizations, and governments to tackle complex technical challenges by providing a robust framework for developing, standardizing, and certifying technologies across critical domains like cybersecurity, IoT, blockchain, and cloud computing. By fostering fair and transparent development processes, OASIS Open ensures that open technologies are ready for international policy, procurement, and widespread adoption.

Development of open standards
Support for open source projects
Path to de jure approval
Octopus Cybersecurity
Free
Governance, Risk, and Compliance (GRC)

Octopus Cybersecurity View Octopus Cybersecurity

Octopus VAR empowers risk managers and CISOs with a robust Validation, Analysis, and Reporting platform, offering deep operational risk visibility and control while ensuring adherence to security guidelines and business continuity. Proactively detect configuration changes in real-time and prevent compliance violations through an intuitive dashboard designed for IT risk verification, change detection, and instant notifications for security and best practice deviations. Octopus VAR seamlessly integrates with diverse devices across hybrid environments, providing comprehensive operational risk management.

Real-time Configuration Change Detection
Deep Operational Risk Analysis
Automated Compliance Verification
Previous 1 ... 7 8 9 10 11 12 Next