A model for the categorical layers of activities related to automated governance.

Gemara

Gemara (The GRC Engineering Model for Automated Risk Assessment) provides a logical model to describe the categories of compliance activities, how they interact, and the schemas to enable automated interoperability between them.

In order to better facilitate cross-functional communication, the Gemara Model seeks to outline the categorical layers of activities related to automated governance.

Quick Start

Choose your starting point based on your needs:

• Understanding GRC structure? Start with The Model component
• Need consistent terminology? Begin with The Lexicon component
• Building tools? Jump to The Implementation component

All three components work together – you’ll likely use elements from each as you work with Gemara.