Share via


System Center Process Pack for IT GRC

Published: December 13, 2011   |   Updated: June 14, 2012

 

What’s New

The final release of the System Center Process Pack for IT GRC (Process Pack for IT GRC) is now available for download.

This update provides capabilities to simplify, strengthen, and manage your organization’s IT governance, risk management, and compliance (IT GRC) program. This release allows you to streamline your IT GRC process through exception management, drive data insights through comprehensive trend reporting, and stay current with the latest knowledge libraries.

Download This Process Pack

The Process Pack for IT GRC provides end-to-end IT governance, risk, and compliance (IT GRC) management and automation for desktop and datacenter computers.

Download the System Center Process Pack for IT GRC

Download System Center Service Manager 2012

About This Process Pack

Deeply integrated with Service Manager, the Process Pack for IT GRC translates complex regulations and standards into authoritative control objectives and control activities for your IT organization’s compliance program. The process pack is designed to help customers understand and bind complex business objectives to their Microsoft infrastructure in an operationally efficient manner.

The following overview solution diagram shows how the process pack integrates with Service Manager, Microsoft System Center 2012 – Configuration Manager, and Microsoft Security Compliance Manager (SCM).

Description: C:\Users\sumitp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Outlook\V6G211XD\ITGRC-SCM_Integration (2).png

The final release of the Process Pack for IT GRC provides your organization with capabilities to simplify, strengthen, and manage your IT GRC program: The process pack allows your organization to:

  • Streamline your IT GRC process through a combination of policy enforcement and exception management. Streamline and strengthen your IT GRC compliance process through simplified exception management. With the exception management feature, you can now optimize your IT GRC process: easily define, classify, and manage noncompliance incidents, technology/service constraints, and justifiable exceptions. Simplified exception management allows you to create, approve, and report justifiable exceptions to control and assess the applicability of a given business/IT situation.
  • Drive data insights through comprehensive trend reporting. Drive deeper insights into your compliance health and status with comprehensive trend analysis and more comprehensive reporting. Proactively manage your IT compliance life cycle trends through multidimensional analysis across various measures, including control activities, risk factors, and exceptions, to strengthen your IT governance, risk management, and compliance program.
  • Stay current with the latest knowledge libraries. Use the process pack to automatically check, download, and keep abreast of the latest knowledge libraries through online and offline updates. This final release is designed to broaden your IT compliance scope with even more control activities for various Microsoft technologies, including Windows Server 2008 R2 SP1, Windows 7 SP1, and more.

IMPORTANT: The Process Pack for IT GRC is designed to facilitate compliance activities conducted by your organization’s IT experts, auditors, accountants, attorneys and other compliance professionals. The software does not replace those professionals. The Process Pack for IT GRC includes some control objectives and authority document citations plus libraries with some control activities and associated product value settings. These objectives, citations, controls and settings do not verify or guarantee fulfillment of your organization’s compliance obligations. It is the responsibility of your organization to choose the objectives, citations, controls and settings to use, modify, add or remove based on guidance from your organization’s compliance professionals. Reports and any other information provided by or generated from the software do not constitute professional compliance advice. You must consult compliance professionals to confirm compliance with specific governance, risk, and compliance authority documents.

Included in the Download

The Process Pack for IT GRC includes the following components:

  • ProcessPackforITGRC_amd64.exe
  • ProcessPackforITGRC_x86.exe
  • ProcessPackforITGRC_AuthoringLibraries.exe
  • ProcessPackforITGRC_Documentation.exe
    • Process Pack for IT GRC - Developers Guide.docx
    • Process Pack for IT GRC - Evaluation and Deployment Guide.docx
    • Process Pack for IT GRC - Operations Guide.docx
    • Process Pack for IT GRC - Release Notes.rtf

Related Resources

Take advantage of the following related resources for the IT GRC Process Pack:

  • Microsoft System Center 2012. System Center Service Manager 2012, a System Center suite of products, delivers an integrated platform to automate and adapt IT service management best practices to meet your organization’s requirements.
  • Microsoft Security Compliance Manger This tool incorporates extensive security guidance and documentation in one centralized location, enabling organizations to access and automate the configuration of their security baselines for Windows client and server operating systems—including Windows 7—Microsoft Office applications, and Windows Internet Explorer.
  • Payment Card Industry Data Security Standard Compliance Planning Guide. This guide is designed to help organizations meet Payment Card Industry Security Standard (PCI DSS) requirements.
  • Security Risk Management Guide. This guide helps customers plan, build, and maintain a successful security risk management program.
  • Microsoft Operations Framework (MOF) 4.0. MOF 4.0 delivers practical guidance for everyday IT practices and activities, helping users establish and implement reliable, cost-effective IT services for IT GRC activities.
  • Monitor Key Security Controls to Prevent Data Breach. Learn how to use the free Microsoft Security Compliance Manager (SCM) tool to help you monitor security update status, identify changes to the administrators group, and report on the use of whitelists using the desired configuration management (DCM) feature in System Center Configuration Manager.

Community and Feedback

To join in the greater GRC conversation, visit the Security and Compliance Management Forum. Ask questions to compliance experts and collaborate with your peers on IT GRC-related compliance management issues.

Download This Process Pack

The Process Pack for IT GRC provides end-to-end IT governance, risk, and compliance (GRC) management and automation for desktop and datacenter computers.

Download the System Center Process Pack for IT GRC

Download System Center Service Manager 2012