FBI Looking to Implement a Governance Risk Compliance Tool

The Department of Justice (DOJ) is looking to acquire a governance, risk, and compliance (GRC) tool for the Office of the CIO within the FBI’s Enterprise Information Security Section.

In a bid for software, service management, and customization (partnered with the FBI’s internal Enterprise Developer Services), the FBI is looking for a solution to support its risk management activities.

Source: SoftwareReviews’ Governance, Risk and Compliance Data Quadrant. Accessed June 26, 2020.

Our Take

Understanding your risk tolerance and capacity is an integral part of any overarching security strategy. Selecting a suite of tools that capably meets your needs for collection, assessment, reporting, and workflow of key metrics, as well as controls and documentation, is key.

Even large government agencies such as the FBI recognize that disparate systems or worksheets for tracking risk, compliance, and security activities quickly become ineffective or result in limited or time-consuming reporting and insight. Though the GRC space is large and evolving, finding the right fit for the organization’s needs and core competencies is imperative.

This public procurement will close at the end of June 2020, following what promises to be an eventful selection process.