Deutsche Bank executives responsible for the planning and execution of the project – along with Brinqa officers – discussed, explained, and offered insights on how the bank’s new Brinqa-based system works in real-time.

ITSET’s easy to understand dashboards allows for specific “drill down” capabilities that are leading the industry forward.  Deutsche Bank executives noted the system provides not only applications risk ratings that show potential exposure but also the ability to easily go into the details of the rating to determine which application sub-component (an application, a server, what have you) is causing the potential exposure.

One of the key benefits of the bank’s partnership with Brinqa was the extremely quick system installation and deployment time.  Normally, crafting a GRC solution for a large organization like Deutsche Bank can literally take years to finalize.  From working across business units to getting executives to sign off on systems to the actual creation and installation of the system, the process is extremely complicated; in Deutsche Bank’s case the entire process from the moment they engaged Brinqa to the completion of the project was only nine months.

“Most solutions take years to go from conception to activation,” said Brinqa President, Hilda Perez.  “We were very proud to be able to provide a great solution and with the hard work of the joint team effort the solution was available in a few short months”.

FOR A FULL CASE STUDY ON THE PROJECT, PLEASE VISIT:

http://www.brinqa.com/resources/available-resources/

For more information please contact us via email at sales@brinqa.com or visit us at www.brinqa.com.

Growing fast and deploying even faster is what Brinqa was all about this year!

Simplifying security and risk was the biggest challenge for large organizations and we stepped up to deliver.

Brinqa continues to gain the attention of many who are seeking an easy way to solve a difficult problem.  More and more customers are demanding the ease of use of their mobile applications combined with the complexity of their diverse enterprise environments.  We have been relentless in our pursuit of making it simple and easy to manage and aggregate data to bring your information to you wherever you are.

Our partnerships with vendors such as Rapid7, Qualys and McAfee have allowed for the integration of our GRC Platform, enabling customers to aggregate their data into a single, intuitive, user-friendly dashboard view of risk.   The combination of vulnerability manager asset discovery data with Brinqa’s asset life-cycle management and asset classification provides the comprehensive GRC solution so many enterprises are looking for.   This is a combined effort that aggregates data for simplified viewing and reporting.

Tolerance for complex enterprise applications has gone by the way side and we made room for “simple and easy” in the world of “complex and difficult”.   Our focus for 2012 continues to be improved ease of use, expanding our reach with cloud solutions, compatibility with mobile devices , all with a focus on risk analytics and intelligence and we will continue to bring value to our customers by finding ways to work together to solve big problems.

Simplifying Security and Risk in 2012.

Amad Fida
Chief Executive Officer, Brinqa

7 Ways Customers Benefit from the Alliance and Compatibility 

Austin, Texas – November 17, 2011 – Governance, Risk and Compliance Management solutions provider Brinqa today announced that its GRC Platform solutions has achieved McAfee Compatible status through the McAfee® Security Innovation Alliance partner program. Brinqa has integrated its GRC Platform with McAfee® Vulnerability Manager, enabling customers to aggregate their data into a single, intuitive, user-friendly dashboard view of risk. This combination of McAfee Vulnerability Manager asset discovery with Brinqa’s asset life-cycle management and asset classification provides a comprehensive GRC solution which many enterprises desire.

The integration provides a number of important benefits to a wide range of industry sectors, public agencies, and non-profit organizations including:

• Integrated risk scoring
• Full network asset life-cycle
• Centralized asset repository
• Automated, quantitative application risk assessments
• Compliance metrics scorecard providing  a library of vulnerability management metrics
• Consolidated data allowing for comprehensive application risk score for critical applications
• Automated and continuous compliance assurance by leveraging Brinqa control monitoring tool and McAfee Vulnerability Manager’s policy violation results

“We’re pleased that Brinqa has completed their integration and successfully passed testing of an important solution for our joint customers ,” said Ed Barry, vice president of the Security Innovation Alliance, McAfee.  “The integration of Brinqa Risk Manager with McAfee Vulnerability Manager delivers a comprehensive solution for managing application risk scores for critical applications.”

McAfee Vulnerability Manager finds and prioritizes security vulnerabilities and policy violations on networks, balancing asset criticality with vulnerability severity to enable IT managers and enterprise executives to focus protection on the most important assets.  For more information about McAfee Vulnerability Manager, please visit: http://www.mcafee.com/us/products/vulnerability-manager.aspx

“With this integration and business relationship, we have been able to show the value that Brinqa brings to our customers: a compelling aggregated view of risk”, said Amad Fida, CEO.  “We continue to strive to solve our customer’s problems around attaining higher quality data to drive better decision making”.

Brinqa provides a robust GRC platform which has the following features integrated in a single solution:

• Policy management –  Brinqa provides online policy management that allows complete policy lifecycle management, collaboration, and publishing
• Control monitoring – Brinqa provides complete control lifecycle management, with the capability to perform automated control tests on the various connectors
• Compliance assessment – Brinqa provides assessment management and support for best practice delivery
• Issue & Action tracking – Brinqa provides centralized issue management with the capability to manage data and reports from various sources, such as audit and control deviations. It also allows for manually created issues to be stored in that same single repository

About Brinqa

Brinqa provides enterprises and government agencies with governance, risk management, and compliance solutions that enable the continuous improvement of operational and regulatory efficiencies and effectiveness.  Brinqa’s offering is the most comprehensive available on the market today, based on our forward-thinking vision of a centralized, fully automated, and re-usable governance, risk and compliance (GRC) platform combined with targeted applications to meet program specific GRC needs.  Brinqa streamlines compliance through automation, monitoring of controls, measurement of key metrics and visibility through executive dashboards and reporting. 

For more information please contact us via email at sales@brinqa.com or visit us at www.brinqa.com.

Join us on Wednesday, October 19, 2011 from 1:00 PM – 2:00 PM PDT for an in-depth discussion with Amad Fida, CEO of Brinqa and Michael Rasmussen, J.D., GRC Fellow, CCEP.

The webinar will bring together timely best practices for Policy Management in Today’s Enterprise.

Building a comprehensive and proactive vendor risk management program became a top priority for one of the Brinqa’s financial services client. The existing vendor management program in use was fragmented and manual, leading to inefficiencies and rising costs with the addition of new vendors and services. A single automated vendor on-boarding process was also required. Finally, tracking, auditing, and reporting of vendor risk posture was non-existent and a normalized process to report the risk back to various stakeholders was not available.  This financial institution managed 1800 top tier vendors whose risk posture was reported only at a vendor level. This made the root cause analysis difficult and did not provide a complete picture to the stakeholders. A granular slice of risk management at the vendor service / contract level was required. All assessment work was done using spreadsheets which were distributed and tracked using email.

The Solution

Brinqa provides a robust Vendor risk management application that provides an organization the capability to automate and streamline the Vendor risk management process. At the financial institution, Brinqa’s Vendor Risk Manager was implemented to provide a solution to above mention challenges. The diagram shown below highlights the implementation of the Vendor Risk Manager solution.

Brinqa Vendor Risk Management

• Automated solution to capture vendor assessment – Brinqa provides a centralized repository and a vendor on-boarding workflow, capturing the vendor profile, services provided by vendors, assessments and evidences. Out of the box integration with various contract management systems helps capture and centralize this information quickly and efficiently. Next, configurable baseline assessments were used to categorize vendors (Level 1, Level 2 etc.) and a risk assessment based on standards and best practices were configured and implemented. Brinqa also provides a centralized management of risk assessment including scheduling and tracking with the capability to create configurable workflows on each assessment cycle. Centralized issue tracking and action plan management allow for the detection and management of various issues resulting from the assessments and the resulting action and remediation plans

• Multiple dimensions used to capture vendor profile –The traditional process has been to use the various assessments to capture what is the overall risk profile of a vendor. This process is laborious, subjective and does not allow a 3rd party validation of vendor information.

Brinqa’s data integration layer and connectors can be used to integrate with the third party referential agencies such as Dun & Bradstreet and Lexis Nexis.  Integration with change detection systems such as Google Alerts are available to capture and alert management on breaches in near real time.

• Centralized Solution – Brinqa provides a central cloud offering of the vendor risk management application that provides accessibility to both the organization and the vendors. The Role-based security within the application ensures that vendors get a restricted view of only their assessments and progress. However, executives and risk managers are provided with more details around assessment cycles and dashboards to view repeat offenders, high-risks impacting the organization, and trending to view the history of performance and forecasting to analyze program improvements

In addition, Brinqa supports a complete vendor on-boarding process with configurable workflows that can be used to communicate organization policies and on-boarding documents to the vendors.

• Report on Vendor Risk posture – Brinqa provides a risk engine which uses a quantitative risk scoring and statistical risk modeling to present the vendor risk posture in a normalized scheme back to the business and the various executives.  In addition, Brinqa analyzes risk at a service/contract level which helps executives pinpoint the exact problem area.  In addition to these reports, Brinqa provides a maturity model influenced from BITS and data captured from various industry benchmarks.  The maturity model helps organizations measure their process against the various industry benchmarks.

Benefits

By implementing the Brinqa vendor risk manager application, an organization can see an increased efficiency and transparency in their vendor risk programs.  A centrally hosted vendor risk solution lowers the overall operating cost for the organization and provides an easier mechanism of data exchange.

For more information on Brinqa Vendor Risk Manager please visit our website, or request a demo.

Sacred Heart Clinic

It’s Saturday morning in Round Rock Texas, just outside of Austin, and the caring has begun for yet another day because the Sacred Heart Community Clinic has opened its doors.

The brainchild of Liz Burton-Garcia, the clinic opened its doors in May and already has a patient list of more than 350 local residents.  Burton-Garcia, a veteran of the Medical Mission of the Austin Diocese of the Roman Catholic Church, decided to open the clinic last year.  After making a number of annual week-long medical outreach trips to Central and South America, she felt she was called to help “the people in our own backyard.”  (By the way, she still heads off with the Mission and will be in Peru in September.)

The community support was instant and almost overwhelming, with Will Droste playing a key role in the success of the clinic.  Will is a good friend of both Brinqa and the clinic and provided Brinqa with an opportunity to help the Clinic and donate toward their cause.

“I am pleased that with Will’s help we have been able to develop our relationship with the clinic and I look forward to their continued success,” said Brinqa President Hilda Perez.  “We’re committed to the clinic and its amazing efforts.”

Through the generosity of Brinqa’s support and other benefactors, Burton-Garcia raised more than $300,000 in just a few months to buy the clinic building (on the Saint William’s Church campus) and has secured on-going funding sources to cover clinic expenses.

Since they have no debt and no paid staff, all of the money donated to the clinic goes directly into patient services, Burton-Garcia said.

“The community support has been extraordinary,” Burton-Garcia said.  “People and companies and organizations donate money, doctors and nurses and staffers donate their time, and God puts all the rest of it together.”

The clinic opened in May of this year and has seen nearly 1,000 people so far.  Burton-Garcia hopes to expand her provider volunteer base to both take some of the stress of the volunteer doctors and nurses and possibly expand the clinic’s hours of operation.

The clinic is a registered 501-c-3 non-profit and is dedicated to helping the residents of Williamson County who live in and around the Round Rock area.  For more information on the clinic and to donate, please go to www.sacredheartclinic.org