Solutions

  • Products
  • Use Cases
  • Industries
  • WHITE PAPER
  • HR and IT better together
  • Boost productivity and attract quality talent with great employee experiences.
  • EBOOK
  • 5 steps to transformation
  • A proactive, connected client experience is essential for financial services.

Platform

  • ANALYST REPORT
  • The value of digital workflows
  • Get apps to market in half the time at a third of cost with higher satisfaction.

Customers

  • SUCCESS NAVIGATOR
  • Your prescription for success
  • Accelerate outcomes with a step-by-step action plan of proven best practices.

Explore

  • VALUE CALCULATOR
  • Live up to your potential
  • Determine the untapped value across your entire business in just 60 seconds.

AltaGas keeps it simple with out-of-the-box GRC


alta gas lines

Few industries are more heavily regulated than gas and utilities. From environmental laws to worker-safety standards, the compliance burden is intense. For Calgary-based AltaGas, governance, risk and compliance (GRC) management grew even more complex with its 2017 acquisition of WGL Energy.

At a Knowledge 2019 breakout session, Renato Cunha, AltaGas’s cybersecurity lead, described the GRC challenges created by the merger. AltaGas and WGL had different processes to manage, cybersecurity, risk and compliance, which had to be aligned. One of the requirements to complete the integration of their system’s was to have both companies with an equivalent level of maturity of their security processes.  

The merger compounded already serious problems in AltaGas’s existing cybersecurity and GRC processes. They scored low on the maturity model for effective risk management, and they provided little visibility into the risks that the security team had to manage. The approval process was inefficient and manual, and it required multiple sign offs. Worst of all, the data was dispersed across multiple platforms, making issue tracking and risk management “a spreadsheet nightmare,” Cunha said.

AltaGas turned to ServiceNow’s GRC solution on the Now Platform. While colleagues pushed for alternate vendors whose products they had used before, such as Archer , Cunha pitched ServiceNow for its simplicity, robust platform and faster deployment. The GRC module was ready to use without any customization, supporting the AltaGas’ goals.

“We implemented Risk Management 100% out of the box, and we did it in 45 days.” Cunha said. “We kept it simple from Day 1.”

Using ServiceNow’s Risk Management GRC module, AltaGas created a centralized register to track more than 180 risk factors from 15 data sources and also automated the risk acceptance process, which had been a manual and very inefficient process. With ServiceNow, everything is on one page. Because the module did not require customization, the company was able to boost its maturity score almost immediately. 

Using ServiceNow allowed AltaGas to increase the maturity of the cybersecurity and GRC processes and enable a better alignment with WGL’s security processes. 

The seven-step implementation took a mere six weeks, from installation and configuration through user training and QA. Cunha stressed that the rapid deployment was made possible because his team started with a solid understanding of the model’s out-of-the-box capabilities.

altagas GRC

Once a company recognizes that its GRC processes are inadequate, Cunha said, an out-of-the-box solution like ServiceNow GRC is an effective way to make quick improvements.  We have now begun implementing Policy and Compliance with the same approach to support the final assessment that will allow us to complete the system integration between the two companies.

“Out of the box can address most of your needs and give you rapid maturity gains,’ Cunha said. “And the flexibility is there if you need it, when you need it.”

Learn more about ServiceNow GRC

Topics

Featured

  • A Frictionless Employee Experience
    12-03-2019 Learn how to create a streamlined and frictionless employee experience for your company with automated workflows, self-service, and AI and machine learning.
  • Security teams working on security operations
    Partners
    Deepening Partnerships at Microsoft Ignite
    11-26-2019 Read about Microsoft Ignite announcements and how our strategic partnership will positively impact your integrations and focus on delivering services.
  • Digital Transformation
    High-performing CIOs: Mastering the language of peers, planning, and pace making are critical
    11-26-2019 CIOs can master the language of their peers, plan well, and set the pace to pioneer technology and digital transformation across the organization.
  • Web
    Customer Experience
    10 mind-blowing customer service stats
    11-22-2019 Take a look at these stats from the past few years and decide for yourself whether the current state of customer service is dire or full of possibilities.

Trends & Research

DevOps comes to the enterprise
How to harmonize dev and ops
How well do you know your Gen Zs?

Year