Founded over 100 years ago, Domestic & General (D&G) provides more than 13 million customers with product protection for their electrical appliances, by offering extended warranty services on behalf of many leading brands in the manufacturing, retail and financial services sectors. To develop and manage an ongoing Governance, Risk and Compliance (GRC) strategy, D&G recruited a Chief Information Security Officer (CISO), who in turn selected SureCloud to help deliver the strategy.
With regulatory and trading partner compliance requirements increasing, developing a new GRC strategy was a considerable remit, particularly given the nature of D&G’s business – working with millions of customers and over 160 partners. “Companies need to seek and provide independent evidence that effective controls are in place to satisfy good governance, in order to secure current and future business,” noted Vince Pillay, CISO at D&G. “This translated to considerable challenges for our organization.”
Like many organizations, D&G previously relied heavily on the use of spreadsheets to gather and store all compliance-related information, which posed a number of problems. “The limited manageability of spreadsheets and lack of centralized control made it difficult to devolve and consolidate information,” explained Pillay. “It was particularly frustrating having to then repeat many of the activities for other GRC requirements. We were crying out for a solution to make our GRC processes more efficient.”