Get Started
Created with Sketch.

Recovery Email

Your account give you access to even more premium content, don't lose access to it. Provide a recovery email below.
  • Secondary E-mail
TRY DEMO

Governance, Risk and Compliance (GRC)

ServiceNow named a leader in the Gartner Magic Quadrant for IT Risk Management

Get Gartner Report
Watch demo
Governance, Risk and Compliance
Get pricing

Power your resilient enterprise with risk-informed decisions embedded in daily work. Connect the business, security and IT with GRC.

Manage risk and resilience in real time.

Handle risk with confidence

Improve business resilience

Empower risk-based decisions across the enterprise with a unified data environment. Give the front line easy access to insights and tasks via chat, mobile apps and portals.

Get infographic

Gain real-time visibility

Use continuous monitoring and business continuity management to minimise business disruption and drive action for high risk areas, noncompliance and vendor status changes.

Explore use cases

Increase productivity

Boost productivity with automated, cross-functional workflows; artificial intelligence; and consumer-like user experiences. Reduce errors and costs, while increasing focus on higher-value tasks.

Read white paper
Assess operational resilience with dynamic dashboards

Communicate effectively

Align resilience initiatives with leaders across your organisation. Effectively convey your risk posture with dynamic dashboards that integrate risk and resilience information.

Find out how

Handle risk with confidence

Improve business resilience

Empower risk-based decisions across the enterprise with a unified data environment. Give the front line easy access to insights and tasks via chat, mobile apps and portals.

Get infographic

Gain real-time visibility

Use continuous monitoring and business continuity management to minimise business disruption and drive action for high risk areas, noncompliance and vendor status changes.

Explore use cases

Increase productivity

Boost productivity with automated, cross-functional workflows; artificial intelligence; and consumer-like user experiences. Reduce errors and costs, while increasing focus on higher-value tasks.

Read white paper
Assess operational resilience with dynamic dashboards

Communicate effectively

Align resilience initiatives with leaders across your organisation. Effectively convey your risk posture with dynamic dashboards that integrate risk and resilience information.

Find out how

Don’t just take our word for it

See how companies like yours use GRC to manage risk and resilience.

View all stories
Try value calculator
Read story
SERVICES

Meeting demands of diverse client requirements

Avanade automates GRC and security processes with ServiceNow, increasing visibility and responsiveness.

Read story
Find out how
GOVERNMENT

Survey response times shrink by 66%

The city and county of Denver simplified and accelerated vendor risk management.

Find out how
See results
HEALTHCARE

9 months saved with BCM

Fairview used Business Continuity Management to guard against disruptions in patient care.

See results
Learn more
Energy

Deficiencies reduced by 50%

A sustainable, transparent audit process led Nexen to better decisions and more robust audits.

Learn more

Capabilities that scale with your business

GRC groups key applications into scalable packages that can grow with you as your needs change.

View packages
Get data sheet
 

Policy and Compliance Management

Automate and manage policy lifecycles and continuously monitor for compliance.

 
 

Risk Management

Enable fine-grained business impact analysis to appropriately prioritise and respond to risks.

 
 

Business Continuity Management

Plan, exercise and recover from disasters effectively and efficiently.

 
 

Vendor Risk Management

Continuously monitor, detect, assess, mitigate and remediate risks in vendor ecosystems.

 
 

Operational Risk Management

Manage operational risk as part of an integrated risk management programme.

 
 

Continuous Authorisation and Monitoring

Accelerate the process of bringing IT systems online and continuously monitoring them.

 
 

Operational Resilience

Gain real-time visibility into the resilience of your technology, people, processes and facilities.

 
 

Privacy Management

Manage privacy risk and compliance across the enterprise in real time.

 
 

Regulatory Change

Keep pace with today’s complex regulatory landscape with integration to leading content providers.

 
 

Audit Management

Use risk data to scope and prioritise audit plans and automate cross-functional processes.

 
 

Use case accelerators

Get an operational head start on compliance with popular frameworks and regulations.

 
 

Performance Analytics

Anticipate trends and continuously improve with real-time analytics.

 
 

Virtual Agent

Give employees help when they need it with virtual agents that understand simple, human language.

 
 

Predictive Intelligence

Simplify and accelerate everyday work with built-in machine learning.

 
Load more

Built on the Now Platform®

GRC includes platform capabilities that simplify cross-functional integration, communication and processes.
Explore platform
See latest release
Laptop with single data model
Single data model Eliminate information silos with a common repository for all systems, people and applications.
Workflows to automate manual tasks
Automated workflows Reduce bottlenecks by automating manual processes with a simple, drag-and-drop interface.
Virtual agents with natural language understanding
Intelligent chatbot Resolve issues faster with an intelligent assistant that helps users solve common tasks.

GRC integrations

GRC integrates with content consolidators, security score providers and business continuity solutions.

Created with Sketch. Created with Sketch. Created with Sketch.
BigID
Classify and catalogue asset info with the ServiceNow CMDB for deeper data awareness and to simplify data privacy, compliance, security and governance.
BitSight
Obtain vendor security performance scores to fine-tune vendor tiers and more accurately reflect risk.
RiskLens
Incorporate quantitative analysis results into Risk Management based on the Factor Analysis of Information Risk (FAIR).
RiskSpotlight
Download a comprehensive library of core operational risks mapped to controls, KRIs and more that all financial services organisations should manage.
Security Scorecard
Get vendor security performance scores to refine vendor tiers and more accurately reflect risk.
Serenity EHS
Gain a prescriptive and simplified approach to identify environmental, health and safety (EHS) regulations and drive efficiency when proving compliance.
Thomson Reuters
Import regulatory intelligence feeds to proactively identify relevant changes and manage compliance requirements.
Unified Compliance Framework
Import compliance requirements and map common controls to improve the efficiency of your GRC programme.
Transform business with IT workflows

Unleash the power of IT

Transform your business with digital IT workflows. Modernise your operations to optimise productivity, cost and resilience with a single platform for IT.

Get details

Resources

See all resources
View upcoming events
eBooks
eBooks
Analyst Reports
Analyst Reports
Webinars
Webinars
Solution briefs
Solution briefs

Choose a package

Find the GRC package that works for your business.

Get pricing

IRM Standard

(4)
  • Policy and Compliance Management
  • Risk Management
  • Performance Analytics
  • Audit Management
  • Use case accelerators
  • Virtual Agent (chatbot)
  • Predictive Intelligence
  • Continuous Authorisation and Monitoring
  • Regulatory Change
  • Operational Resilience
  • Operational Risk Management

IRM Professional

(10)
  • Policy and Compliance Management
  • Risk Management
  • Performance Analytics
  • Audit Management
  • Use case accelerators
  • Virtual Agent (chatbot)
  • Predictive Intelligence
  • Continuous Authorisation and Monitoring
  • Regulatory Change
  • Operational Resilience
  • Operational Risk Management

IRM Enterprise

(11)
  • Policy and Compliance Management
  • Risk Management
  • Performance Analytics
  • Audit Management
  • Use case accelerators
  • Virtual Agent (chatbot)
  • Predictive Intelligence
  • Continuous Authorisation and Monitoring
  • Regulatory Change
  • Operational Resilience
  • Operational Risk Management

Vendor Risk Management, Business Continuity Management and Privacy Management are licensed separately.
Contact
Demo