Diligent One Platform offers a unified solution for Governance, Risk, and Compliance (GRC) management, providing a comprehensive overview of risks and insights in one place.
N/A
KCM GRC Platform
Score 7.3 out of 10
N/A
KnowBe4 headquartered in Clearwater offers their governance, risk, compliance platform, the KCM GRC Platform.
Product is a great tool to serve as a central point to compile and document sox controls. This allows transparency across the team and teammates to edit and view progress. The tool also provides an interface that will make it easy for the internal audit team to track and compile control requests. I particularly like how it lets all of the control owners take ownership of their controls. I am currently exploring some of the advanced tools that support testing and the accuracy and completeness of our data, which i'm very excited to explore.
KnowBe4 KCM GRC Platform is well suited for a company that knows what they're doing compliance wise and needs to save time doing it. It won't be something you can spend a few hours on and then put on autopilot. It was made to create a rhythm within your own team, and you'll need to have the buy-in. It's useful for IT and Legal teams that already have a vendor risk management process, but want to have a better handle on it. Giving an outside auditor read-only access to a scope is also a huge time saver.
Vendor management has a few kinks to work out. We want to be able to do internal questionnaires for vendors as a compliance checklist before we sign off on a contract. Nothing in the works yet, but there are a few workarounds.
The navigation between different tasks in scope is clunky, and it's easy to lose your place, and it forces you back to the main page of the scope to retrace your steps.
HighBond by Galvanize support has some of the best and fastest support that I have experienced. Though we only contact them through emails, they were quick to provide insightful information about our problems. Whenever we email them about an issue, they would be able to reply in less than an hour, ready and prepared with useful solutions to address the issue.
Support from KnowBe4 KCM GRC Platform is always great. It's always in-house localized support, with excellent response times, and dedicated Customer Success Managers to answer the bulk of your questions or take your suggestions and make them a feature request. They will also reach out at least quarterly and do health checks to make sure you're using the platform to the best of your ability.
I was not involved in the implementation, but i do think the interface works well and is a great tool to centralize our compliance program. I'm currently in the process of exploring many of the advanced features and using the Diligent Academy to learn about some of these exciting features to add value to our organization. I recently attended a CPE and was very impressed with the presenters and their energy and knowledge of the product
Diligent Highbond stacks up somewhat poorly against our other tools. In addition to what was included above, we use some smaller tools that fulfill many of the gaps left by Diligent Highbond. We have since started to move away from Diligent Highbond. Alteryx is better at processing data and their server tool can be used to publish results for review.
Quantivate and Fusion were the other two options we checked out. The quantity was high, and a good bit more expensive, but it was the best performing with its platform. They also had more modules that each cost extra to add to your subscription. KnowBe4 KCM GRC Platform was all-in-one and a little less mature, but the better buy. Fusion was hard to follow in the demo, and I was not overly impressed. I may have made my decision early enough in the demo to not pay much more attention to it.
