GRC Envelop
GRC Envelop is a web based software for managing workflow and documentation for the governance, risk management and compliance domain. GRC Envelop is created by Arambankudyil Consultancy Private Limited based in Kochi, India in the year 2016. The common roles within an organisation who would use GRC Envelop are internal / external auditors, internal controls office, and the risk management function.
Structure and Features
The entire software is based on the structure that all organisations are built of a series of processes. Each process must have at least one objective that the process must fulfil. There are usually reasons why a process objective cannot be achieved. These reasons are risks that are present while executing the process. In order to contain these risks, controls are created. To ensure whether these controls are functioning properly, tests are conducted at frequent intervals. The act of testing these controls is usually referred to as auditing.
Process → Objective → Risk → Control → Test
GRC Envelop has a variety of features that help manage enterprise workflows for risk management and auditing. The three basic modules are:
- Audits - process audits (Internal audit and external audit) are managed through this module
- Risk Management - risk registers, risk, stakeholders and risk matrices
- Repository - a store for for audits and risks
Licenses
- Enterprise version
- Community version (risk management, repository and search features are not present) - MIT License