In QSEC® the requirements to a GRC management system is realized in the modules: master data (organization, scopes, employees, roles etc.), compliance (norms, laws, guidelines etc.), information assets (business processes, information, asset groups), risk (by ISO/IEC 27005), security incidents (assignment to asset groups and risks), BIA/BCM (business impact analyze, gap analyze, emergency plan etc.), documents and administration.
Expert more about QSEC® modules!