"Among other benefits, the Metricstream solution offers us a centralized repository of policies and procedures, and a powerful user-friendly search tool to locate them. It also contains a comprehensive framework to map policies to areas of compliance, control, processes, and other policies for efficiency."

"With the MetricStream solution, Cleveland Clinic has been able to efficiently identify and assess IT risks, while also evaluating IT compliance and controls, monitoring third-party risks, and remediate information security threats."

“Enterprise Risk Office at PSCU leverages technology to ‘connect the dots’ across the organization and stay abreast of regulatory changes.”

"Technology is an integral part of any GRC strategy, and it should be factored into the overall corporate strategy, as most organizations are no longer location-centric but information-centric."

"By using the MetricStream system, it’s very easy for us to flag where these smelters are from and what the risks are. We are actually able to close out most of our supplier risk within 30 days."

“MetricStream provided us a proven, scalable and cost effective solution to help our subsidiaries streamline SOX compliance initiatives. The configurability of the solution combined with the logically structured, intuitive interface accelerated the speed at which we were able to achieve unified risk and compliance framework. We are pleased to partner …

"We implemented the MetricStream Vendor Risk Management Solution at Zurich Insurance Company in under 12 weeks. We have a great solution that is really working well for the business."

"We have performed our annual compliance risk assessment in the tool. We have also used our tool this year for annual planning exercise."

"Our risk function should be able to better support sustainable business growth. To help deliver on that vision over the course of this year, we've been working with MetricStream to deliver an integrated GRC program across multiple business units and all three lines of defense."

"We are moving away from multiple platforms and complex spreadsheets to a single instance of the MetricStream platform. This has enabled greater collaboration between our teams as well as standardization and simplification of our ways of working."

“Technology is helping us streamline our Risk and Compliance processes. It simplifies reporting, thereby enabling our teams to focus their efforts on identifying risks and conducting tests.”

“For GRC, we are looking to have a vision of how all these different spare pieces can come together and how we can tell the whole story."

"Quantification is important because it gives us a base line or a basis rather of how we can truly inform the business to help prioritize business decisions but also to enable business."

“For the first time the company had a complete inventory of the organization’s risk. That helped us recognize early on that MetricStream solution is well conceived and tremendously efficient.”

“We tested MetricStream, and found that it addressed all our needs, in terms of unifying the audit universe, improving the effectiveness of internal audit function, and streamlining the internal control and governance processes.”