Create a vendor selection project & run comparison reports
Click to express your interest in this report
Indication of coverage against your requirements
A subscription is required to activate this feature. Contact us for more info.
Celent have reviewed this profile and believe it to be accurate.


Nasdaq‘s BWise GRC Platform

BWise is the cornerstone of Nasdaq’s governance, risk management, and compliance (GRC) solutions, supporting both private and publically-listed companies to manage enterprise-wide GRC issues. The software platform enables customers to stay in control of all financial and reputational risks. BWise offers:

  • Role-based solutions for Risk Management, Internal Control, Internal Audit, Compliance and Policy Management and Information Security.

  • Support for the end-to-end workflows of a given role and is seamlessly integrated with the others.

  • One integrated system with common risk taxonomy focused on business objectives, with a common language for internal audit, risk, and compliance from which each department can work.

Key Features


BWise covers all aspects of the risk management process with BWise® Risk Management, ranging from initial risk identification through integrated reporting.  It provides for the workflow in-between as well – risk assessment and evaluation to risk mitigation and monitoring, tracking and managing incidents, and ensuring proper follow-up. Following ISO 31.000 ERM methodology, COSO ERM and many other risk methodologies, BWise clients can keep a keen eye on their key organizational risks at all levels.


BWise® Internal Control supports the financial reporting of the compliance process, to ensure continuous compliance with accounting rules, regulations like Sarbanes-Oxley, and corporate governance guidelines. Starting from documentation, and following through with testing, design and operating effectiveness, the assurance of appropriate financials is guaranteed. Deficiencies are carefully managed and resolved with powerful workflows. Timely management information and follow-up are ensured by the solution’s integrated reporting.


BWise® Internal Audit supports the complete audit process starting with the documentation of the audit universe.  An annual risk assessment of the business helps establish priorities to build the annual audit plan. Then, individual audits are scheduled and setup based on the predefined scope and available workpaper templates. While the audit is executed, audit activities and findings are documented and pushed to the business for appropriate follow-up. Integrated reporting capabilities help compile the audit report.


To deal with the dynamic world of ever-changing regulations, BWise® Compliance and Policy Management captures regulatory alerts and ensures follow-up. Regulatory changes can then be analyzed and assessed for their impact on the organization. Existing policies are adapted and new policies can be created – with care given to converging compliance issues to minimize response efforts needed from the organization. Policy communication is assured, including policy attestation, training and certification. Regular compliance assessments can ensure continuous compliance, with integrated issue tracking to manage non-compliance incidents and potential flaws.


BWise® Information Security provides the organization with an overview of all the applicable requirements resulting from information security standards such as ISO 27002, ISF and NIST. The solution supports the end-to-end Information Security process starting with documenting the Information Security Management System. Capabilities include: asset impact analysis, threat and vulnerability assessment, requirements evaluation and monitoring, issue remediation and reporting.

Take Fact-based Decisions to a New Level with Continuous Monitoring and Continuous Auditing Integrated into the GRC Platform

Data analytics technologies such as Continuous Monitoring (CM) and Continuous Auditing (CA) enable data from multiple systems and databases to be collected and analyzed automatically. This reduces the manual work required and increases efficiency, scoping, and accuracy by analyzing full data sets rather than mere samples. Contact us to learn how CM and CA can take your Risk Management, Audit, Internal Control or Compliance functions to the next level.

Key Benefits


We collaborate actively with all of the major international audit firms. The BWise solution will help improve reporting quality and ensure that the fiscal year-end closing is conducted efficiently and quickly.


By coordinating organizational strategies and processes, along with the necessary employees, departments, and technology, BWise offers an integrated GRC platform that increases transparency and promotes ethical conduct. Our approach reduces a company’s risk management workload, while maximizing business control.       


At BWise we regularly update our software and release versions for the benefit all of our clients. Our solutions are architected so that they are configurable and guaranteed upgradable. This plus the benefits of risk and reputation management and compliance assurance ultimately provide a lower total cost of ownership.


BWise has been dedicated to providing dependable, proven GRC solutions to companies in all industries for more than 20 years. We employ a broad range of best practice applications that are continually updated, tested and enhanced. In addition, our solutions have been lauded by independent technology analysts and valued by customers worldwide.


Depending on an organization’s specific requirements, the BWise solution can be rolled out internationally, adapted to comply with local regulations, or work in multiple languages. Our highly-experienced team can help clients start implementing a GRC initiative now – and provide for more extensive GRC practices in the future by activating additional capabilities in the installed solution.

Product/Service details

User Suitability (Capital Markets & Investment Mgmt)
Asset Managers, Trading firms, Wealth Managers