Glad you came!

TheGRCBlueBook has created a GRCIndex that quantifies the functional modules of GRC solutions. The GRCIndex is the first and only objective measure of each solution provider's risk module capability . 

We don't pick winners; we explain how it works so risk professionals can judge for themselves which provider offers a solution that fits their needs. 

A "No Marketing Hype" Promise! 

The GRCIndex is coming late fall 2020!

"A heuristic technique, or a heuristic, is any approach to problem solving or self-discovery that employs a practical method that is not guaranteed to be optimal, perfect, or rational, but is nevertheless sufficient for reaching an immediate, short-term goal or approximation." - Oxford Dictionary

This is the leading cause of risk failure!

We uncover heuristic biases that create unintentional blindness in seeing the risks that hide just below the surface.  Our Cognitive Risk Assessment enhances risk awareness and helps guide your choice in the right GRC tools to address your specific risks.

Knowing technology is not enough! Understanding how technology integrates with people requires a different vision. 

We are not "Risk Pundits"!  We are senior risk professionals who know what it takes to manage risk.

We use behavioral science, technology and experience to create high performance risk teams that refine existing risk and cybersecurity programs.. We focus on people! 

Human-centered. Technology-enabled.