Identity GRC has a powerful data analysis / rule engine which makes it possible to query the Entitlement Ledger in a natural way.

It only takes a few clicks to answer questions like:

• Who can access what permission?
• Which accounts need disabling?
• Which people working in the computer department, but not a member of IT Operations, have admin privileges on the production servers?
• What permissions do users of a specific group share?

These answers can be found at any time period. You can then answer the forensic requests:

• Who had access to the “Bank wire transfer” permission in the ERP three months ago?
• Who had access to the shared folder containing the company financial reports before publication last March?

The data analysis engine is the main component to orchestrate all controls. Gaps are immediately identified and the appropriate remediations can be triggered.

The analysis results can be published in the Web Portal and thus be accessible to all the involved parties.

Brainwave Identity GRC comes with a default set of analysis out-of-the-box, which makes it possible to answer the most common requests concerning security measures (ISO 27002).