This paper discusses the business value that can be realized through an integrated IT GRC program at two levels:
1. Integrated IT GRC across the organization – Benefits include lower risk, higher efficiencies, and improved governance and decision-making
2. IT GRC within a domain – Benefits include process and technology improvements in domains such as IT risk management, IT compliance management, policy management, threat and vulnerability management, and third-party management
