High-Growth Software Company Scales to Meet Demand for Risk Monitoring
Company Size
1,000+
Region
- America
Country
- United States
Product
- NAVEX IRM
Tech Stack
- Risk Management Software
Implementation Scale
- Enterprise-wide Deployment
Impact Metrics
- Customer Satisfaction
- Productivity Improvements
Technology Category
- Application Infrastructure & Middleware - Data Exchange & Integration
Applicable Industries
- Software
Applicable Functions
- Business Operation
Use Cases
- Regulatory Compliance Monitoring
- Remote Asset Management
Services
- System Integration
About The Customer
The customer is a high-growth software company based in Portland, Oregon. They build a popular enterprise communication solution for employee collaboration. As the company grew, it faced increasing regulatory requirements from new industries such as healthcare and finance, geographic data privacy laws, and various requirements for third-party vendor relationships. The company's existing risk management processes, which relied heavily on spreadsheets, emails, shared drives, local drives, and even print-outs, were proving inadequate. The company had no central repository for risk management data, and the information security manager was struggling to manually find and track all this information. The company needed a more efficient and effective way to manage risk, track audit requests, align their responses to regulatory requirements, demonstrate compliance, and protect customer data.
The Challenge
The software company, based in Portland, Oregon, was facing a growing challenge in tracking and responding to risks posed by customer data collection. As the company grew, it faced increasing regulatory requirements from new industries such as healthcare and finance, geographic data privacy laws, and various requirements for third-party vendor relationships. The company's existing risk management processes, which relied heavily on spreadsheets, emails, shared drives, local drives, and even print-outs, were proving inadequate. The company had no central repository for risk management data, and the information security manager was struggling to manually find and track all this information. The company needed a more efficient and effective way to manage risk, track audit requests, align their responses to regulatory requirements, demonstrate compliance, and protect customer data.
The Solution
The company chose NAVEX IRM from NAVEX to formalize and speed up their customer audit program, while at the same time ensuring compliance and third-party due diligence. NAVEX IRM helped the software company manage and respond to the influx of customer audits by centralizing all risk data and documentation, significantly reducing the time and effort to find requested information. The company was also able to formalize a third-party risk management program, automatically issuing comprehensive risk assessments to all third parties. Answers were automatically weighted and scored to provide instant visibility into high-risk vendors. In addition to solving headaches related to customer audits, the software company was able to orchestrate a multiregulation compliance program to track and manage compliance efforts required by their customers. They were also able to use the platform to maintain their ISO 27001 certification and SOC II compliance.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Factor-y S.r.l. – Establishes a cost-effective, security-rich development environment with SoftLayer technology
Factor-y S.r.l., a web portal developer, was faced with the challenge of migrating its development infrastructure to a reliable cloud services provider with highly responsive technical support. The company needed a solution that would not only provide a secure and reliable environment but also support its expansion by providing resources to create and deliver innovative offerings.
Case Study
Darwin Ecosystem: Accelerating discovery and insight through cutting-edge big data and cognitive technologies
Darwin Ecosystem was founded with a unique vision of harnessing chaos theory mathematics to uncover previously hidden connections in unstructured data. The company’s algorithms can look at all the data generated by any source (such as news, RSS feeds and Twitter), and analyze how a specific set of concepts within that data are evolving over time. This is particularly valuable in situations such as business and competitive intelligence, social research, brand monitoring, legal discovery, risk mitigation and even law enforcement. A common problem in these areas is that a regular web search will only turn up the all-time most popular answers to a given question – but what the expert researcher is actually interested in is the moment-tomoment evolution of the data available on that topic. Darwin’s algorithm is computationally intensive, and the sources of data it correlates can be vast. To bring its benefits to a larger commercial audience, Darwin needed to find a way to make it scale.
Case Study
Zend accelerates, simplifies PHP development
Zend Technologies, a major contributor to the PHP open source community, needed to keep pace with emerging trends such as mobility, agile development, application lifecycle management and continuous delivery. The company needed to provide the right tools to the worldwide community of PHP developers. The challenge was to support enterprise-class capabilities from end to end, including mobile, compliance and security. The pace of business required developers to show results fast across a variety of devices without compromising quality or security.
Case Study
Delivering modern data protection with cloud scale backup from Cobalt Iron and IBM
Organizations are struggling to modernize their legacy data protection environments in the face of growing demands around new infrastructure, new applications, and budget consolidation. Virtualization and modern application development processes have significantly outgrown legacy backup architectures. In response, infrastructure teams have created multiple backup solution types to handle the varying SLAs (performance, scale, cost) required by their business sponsors. However, the sheer number and variety of solutions in this uncontrolled expansion creates huge amounts of work, threatening to overwhelm the IT team in many organizations. Today, developers may add new applications and virtual server instances by the hundreds per day without accounting for the restrictions of the existing backup infrastructure. They leverage the cloud for immediate compute and storage resources, yet rarely communicate succinctly with corporate IT to ensure that the appropriate data protection services are in place.
Case Study
Achieving near limitless scalability and flexibility with data in the cloud
Web-based publishing platform SpaceCraft found that as its client base grew, it was spending an increasing amount of time managing its databases, distracting its focus from product innovation. As its user base rapidly expanded, data volumes at SpaceCraft began to rise dramatically. Along with their main focus on maintaining and further developing a great platform for web publishing, the SpaceCraft team had the added pressure of managing the increasing quantities of data while ensuring ongoing high performance for clients.
Case Study
nViso SA – Delivers emotion recognition solutions worldwide with a scalable SoftLayer hosting solution
nViso SA, a company that provides emotion recognition solutions, was in need of a high-performance cloud hosting infrastructure. The company wanted to extend its services to a global customer base. The challenge was to find a solution that could handle the demands of their growing customer base and the need for high performance and reliability.
