About Project

For the biggest IT Outsourcing organization in Nordics, TIETO, we have developed several GRC Processes from risk to security, from privacy to incident management utilizing RSA Archer.

Project Info

  • Date : September 2015
  • Location : Helsinki,FI
  • Category : Several processes with RSA Archer


Tieto as leading IT organization in Nordics, initially wanted to manage risks using a mature approach. Starting with Enterprise Risk Management process and it enabled several other processes to be following the same path of improvement by GRC approach.

Utilizing RSA Archer as the GRC Platform, several related risk and control processes on-boarded and being developed to satisfy compliance and customer requirements needs.

Our Solution

We brought our experience from several other similar organizations to constantly and closely working with Tieto in a long term relationship and daily interactions to improve risk, privacy, security, audit, business continuity, issue management domains by applying GRC principles such as automation, integration, simplification, unification, re-usability and agility.

Integrating it to several other tools to bring related quality data from authoritative sources enabled teams to utilize processes using same organizational hierarchy, business and IT asset data.


The Result

Several processes mentioned had higher efficiency, better data quality, increased visibility, increased collaboration and improved accountability and organization culture. It preserves Tieto’s institutional memory and increases agility against customer requirements, changes in IT industry and helps to comply with several compliance requirements.