Intellect QMS vs. ServiceNow Governance, Risk, and Compliance

This is a great platform for a small but quickly growing organization. It works well out of the box without a lot of bells and whistles but can be configured for specific needs. Migrating "legacy" processes, data and culture requires a lot of up front training but is worth the effort. Customer support is top-notch, and a single administrator can manage multiple applications

Incentivized

Oracle EBS R12 requires a unique user skillset to understand how it handles user access and functions. Accordingly, ServiceNow has this high level of sophistication to manage this information and apply it to Sensitive Access and Segregation of Duties rules to identify exceptions. This depth of configuration is critical to accurately identify when Oracle Responsibilities (access) truly allows access and thus could be a violation. ERPs with less complexity may not require this customization of ServiceNow GRC, but you would be wise to raise these questions and examples in the demo to ensure it will work for you. In the past, we have found that risks of under-reporting exceptions or false positives become so voluminous that users don't always get to the accurate violations for timely remediation. Proper configuration up front will improve your effectiveness and ROI down the road.

Incentivized

• The applications are linked to each other so that activities can be shared, collaborated and escalated in one platform.
• Applications are sufficient "out of the box" but can be configured easily with its intuitive Design tools.
• Users can go to their personal dashboard to stay on top of their tasks across multiple applications and monitor status of activities in progress.
• The workflow-based applications keep activities moving forward efficiently but following standard processes.

Incentivized

• Finding reported by the auditor. GRC helps us identify, assign, and track the resolution of this.
• Exception to information security policy. These require quarterly reviews and setting up reminders to revisit these.
• Building out new projects and baking security and compliance into the project and tracking it in GRC to ensure we deliver a compliant product on day one

Incentivized

• Although the configuration is a "no code" approach, there is a learning curve to effecting design changes.
• The user guide documentation provided is OK for administrators but needs to be more user-friendly for general users.
• Importing "legacy" data from existing processes can be cumbersome.

Incentivized

• Delivering more out of the box functionality that rivals other GRC platforms. The bare bones approach may not help companies that do not have expertise or capabilities to build effective GRC processes.
• Easier way to implement workflow.
• Offering better metrics without buying add-on tools.

Incentivized

There is always resistance to change, but users are finding Intellect QMS to exceed their expectations as we migrate from our legacy "island" Sharepoint-based processes. Training is actually easiest to do hands-on, and users can learn quickly and then help train others. Users appreciate the personal navigation dashboard and the familiarity of the interface from one application to another. The workflow-driven applications are intuitive and make the system easy to navigate for all levels of users, although the learning curves will vary. The "Design-Test-Live" approach facilitates the implementation of configuration changes suggested by users.

Incentivized

I'm satisfied with our experience. The configuration was the biggest challenge, but we have moved onto the stage of user training and usability. We would appreciate having better user training documentation and possibly videos and/or computer-based training to help our international users adopt this software for their GRC needs.

Incentivized

It's a good system, but I am awaiting key features in the new release. We hear that ServiceNow is continually adding new features and we look for improved reporting, better Oracle Integration, and user training opportunities. To the extent these materialize, we expect further improvements in our experience with ServiceNow GRC. Until that time, though, we believe we are meeting our objectives expected at the beginning of this project.

Incentivized

No comparison with the huge improvement Intellect is compared to the software we were using in the past. Night and Day difference.

Incentivized

We just recently started using TrustArc for data privacy requests and I can already speak to the fact that TrustArc is a more confusing platform once there. The positives of ServiceNow would be that a majority of our URL's drive to owned websites which our employees are very comfortable with using versus pushing them to another website that feels unsafe.

Incentivized

• Users appreciate the time and effort saved by having all of the QMS functions connected and in one place, without having to rely on emails, Sharepoint links multiple modes of communication to keep track of their activities and responsibilities.
• The no-code platform means we don't need IT support to maintain and configure the applications. One administrator was able to get the system launched and effective in just several weeks, with ongoing training and customization as users and applications are added.
• Our organization was recently certified to ISO 9001:2015. Intellect QMS helped us to navigate internal and audits confidently and effectively.

Incentivized

• Effective Enterprise Risk Management
• Holistic Real-time Monitoring of your technology and Risk
• Negative - Asset Management has some issues and Ghost / Shadow IT is big issue