There are a couple of major events this week so GRC has been busy. Force.com now offers ClearGRC for social governance, OpenText has released content management for the legal vertical, we looked at why SharePoint is barely legal and Clearwater has upgraded its HIPAA auditing tool. Symantec, meanwhile, offers new backup possibilities.

Force.com Gets Social GRC

Dreamforce is on, so let’s kick off with something Salesforce-y. GRC vendor EnCrisp has announced the release of ClearGRC Enterprise and Social Governance Service built and delivered natively on Force.com.

The suite of products includes a cloud-based Governance-as-a-Service (GaaS) platform named ClearGRC.

These governance, risk and security compliance applications are designed to govern and provide transparency and monitoring of compliance with quality and security standards

The purpose-built cloud GRC solutions focus not just on internal governance but also on the collaboration driven by social GRC, using real-time dynamic risk-based information from social media channels such as Twitter and Facebook and geospatial information from Google.

Built on Force.com, the EnCrisp applications come with a drag-and-drop user interface and offers extended real-time transparency and monitoring of social media and geospatial location-based information.

It also comes with support for over 16 languages with the ability to add more and integrates into to major enterprise ERP and GRC solutions including Microsoft, Oracle, SAP and other third-party solutions.

OpenText Offers Legal Content Management

Earlier in the week, OpenText released Legal Content Management. The release follows its release of Application Governance for SharePoint in March of this year.

While the governance application offers control over SharePoint sites to enforce broader compliance and archiving policies and help lower ongoing administration and storage costs, LCM offers OpenText expertise in lifecycle management with SharePoint’s collaboration and document management capabilities.

LCM, significantly, is also specifically offering this to SMB law firms, reflecting, perhaps, the reach of SharePoint into that market with the launch of Office 365 and new pricing schemes that make SharePoint accessible to even the smallest companies. 

SharePoint is Barely Legal

This week we also took a look at SharePoint in the legal space and posed the question as to whether SharePoint is ready for legal.

The legal vertical tends to be the most fussy when it comes to document management, something for which SharePoint has been criticized. In the legal space, this could be problem, as law firms' business model is driven by authoring, delivering and storing documents.

Its competition has been perfecting this technology for years, and SharePoint has some catching up to do.

Clearwater’s Compliance Audit tool

Meanwhile, the HIPAA-HITECH consultancy Clearwater Compliance has released v2.1 of its Clearwater HIPAA Security Assessment, an interactive navigator designed to help organizations prepare for OCR HIPAA site audits and to guide organizations to compliance.

The assessment navigator simplifies the process and makes compliance less overwhelming by guiding the user through each step of the process.

Improved Version 2.1 includes a range of enhancements including better document management,  as well as a new “Tell me more” feature that explains regulatory language in plain English.

It also includes specific references to underlying NIST Special Publications that provide further guidance.

Risk managers using Clearwater HIPAA Security Assessment are led through a series of interview questions regarding the current state of the organization's HIPAA compliance.

The application rolls up the responses into executive level dashboards, providing a snapshot of the current level of compliance and a tool to measure ongoing progress -- almost a DIY compliance kit. If you want to know more about it, check out the free-30 trial.

Symantec Simplifies Backup

There were bound to be a number of virtualization announcements out of VMWorld and though it’s a bit early in the week to get a real sense of everything that’s happened security-wise, there are some things worth noting.

Symantec announced the general availability of the Backup Exec 3600 and NetBackup 5220 enterprise backup appliances to help organizations modernize their backup infrastructures and accelerate virtualization.

With them, appliances can be deployed in as little as 30 minutes and help organizations protect information in physical or virtual environments, as well as deduplicating data to improve efficiency and reduce costs.

The Backup Exec 3600 appliance provides the same visibility into virtual environments as Backup Exec 2010 software to allow organizations to speed recovery times and reduce storage costs.

According to Symantec, the release of the NetBackup 5220 series provides a "backup in a box"approach to data protection for public sector customers.