The Hershey Company: A digital transformation of IT risk and compliance management

Featuring The Hershey Company

Date & Time:
Tues, May 7, 1:30 pm to 2:10 pm
Track:
The response engine for security and enterprise risk
ID:
BRE0675
Speaker(s):
Troy Grubb, Senior Manager Information Security, The Hershey Company
Description:

Join this session to hear about how The Hershey Company is going through a digital transformation. As a result, the IT risks to the 125-year-old company are growing in both volume and complexity. In response to this changing landscape, the IT risk and compliance team realized the need to reestablish their mission and rebuild the program. Within 12 months, leveraging the ServiceNow GRC platform, Hershey's was able to implement a new risk-monitoring program based on NIST CSF to establish risk awareness, a compliance management program to help ensure SOX compliance for ITGCs, and a policy exception process to promote visibility to issues. In doing so, they're realizing their mission to “promote shared accountability for the risk equation to all stakeholders and enable informed and intelligent decision making for their IT leaders.” 

Audience:
Leader, Process Owner, Enterprise Architect
Session Type:
Knowledge Breakout
Product(s):
Governance, Risk and Compliance, IT Service Management
Industry:
Manufacturing and Natural Resources
Topics:
Implementation Journey
Apps/Capabilities:
Continuous Monitoring, Integrated Risk Management
Tags: