GRC International Group PLC (LON:GRC)

GRC International is a UK-based holding company for a group of companies including IT Governance limited in 2018. Today, it is a leading global integrated cyber security service provider that aims to deliver high and attractive value to its customers. The group offers a wide range of products and services that offer solution for risk management, cyber security governance and compliance requirements of organisations. It allows its clients to meet the regulatory standards and commercial requirements that are in force or are coming into force. It operates a one-stop-shop that supports its client’s source, deploy and /or integrate an appropriate mix of solutions for data protection, cyber security and resilience, penetration testing, and management standards such as Cyber Essentials.  The group’s shares are traded on the London Stock Exchange as LON: GRC since 2018.

The group’s products and services are split into three core divisions that include Ecommerce, Professional Services and SaaS. The ecommerce division offers various classroom training courses that range from one day to five days and its topics are cyber security, data protection, ISO 27001 certification and other related topics.  It also offers e-learning courses, online training, and examinations for certificates. Since 2017, the group provides these courses in the UK, Belgium, Sweden, Germany, France, Eire, Denmark, Italy, the Netherlands, and the US.

The Professional services division offers consultancy services that include GRC Consultancy and Technical Services. It was established after delegates at training courses requested for practical assistance in designing and implementing data protection and cyber security policies. The GRC Consultancy includes DQM GRC and GRCI law and the Technical Services include PCI DSS, Penetration testing and Cyber Essentials certification and consultancy. The SaaS division sells documentation templates, books, and software through its website, most of these books are related to how businesses should manage their IT risk Exposure or standards published by various bodies.

The group publishes or writes books itself and those supplied by third parties including the stationary office, IEC, ISACA, Rothstein, The British Standards Institution, Van Haren, and the Stationary Office. Majority of SaaS Division sales are done online and required limited human intervention. The documentation templates are used by customers to assist them to document their IT systems and Procedures and its software solutions are creates and sold by its subsidiary, Vigilant Software Ltd. it has recently developed a data flow mapping tool and management tool.