Japan IDC's Compliance Taxonomy and Chief Compliance Officer Survey 2009

Abstract

This IDC study (a translation of the Japanese report IDC #J9110101) looks at the latest (2009) taxonomy of the compliance infrastructure and governance, risk, and compliance (GRC) management solutions that make up the compliance market. It also reports the results of a questionnaire-based survey conducted among 180 chief compliance officers (CCOs) of listed and non-listed companies in Japan.

Amid the global economic crisis caused by the subprime loan problem in the United States, business managers have to juggle between ensuring effective law compliance and finding ways to get out of the "once-in-a-century" crisis. Non-IT departments (line of business [LOB]) have an increasingly important role to play in promoting the use of IT for compliance. "Compliance solution providers that do not have strong relationships with non-IT departments should put forth proposals to improve the efficiency of the compliance management processes of business departments — such as accounting/financial, HR, legal, procurement, quality management/product safety, and customer management — with security solutions as a common ICT platform," says Eiji Sasahara, research manager, IT spending, IDC Japan.

Table of Contents

• IDC Opinion
• In This Study
• Methodology
• Executive Summary
• Situation Overview
• Compliance
• Definition of Compliance
• Stakeholders and Governing Laws of the Compliance Market
• Compliance Infrastructure Market Definitions
• Compliance Infrastructure Market: Hardware
• Security Appliances
• Threat Management Appliances
• Secure Content Management Appliances
• Storage Systems
• Disk Storage Systems
• Tape Automation
• Servers
• x86 Server
• IA-64/RISC Server
• Other Server
• Compliance Infrastructure Market: Software
• Content Applications
• Content Management Applications
• Search/Discovery Software
• Enterprise Portal
• Collaborative Applications
• Team Collaborative Application
• Conferencing Applications
• Other Collaborative Applications
• Information/Data Management Software
• Relational DBMS
• Non-Relational DBMS
• Database Development/Management Tools
• Data Integration/Access Software
• Application Design/Implementation Tools
• Software Implementation Component
• Business Rule Management System
• Model-Driven Development Software
• Quality Life-Cycle Tools
• Automated Software Quality Tools
• Software Configuration Management Tools
• Application Server Middleware
• Application Server Software Platform
• Virtual Application Server Appliance
• Transaction Processing Monitor
• Other Application Server Middleware
• Extreme Transaction Processing
• Integration and Process Automation Middleware
• Business-to-Business Middleware
• Business-to-Business Gateway Middleware
• Electronic Data Interchange/Value-Added Network and Business-to-Business Services
• Enterprise Service Bus/Connectivity Middleware
• Enterprise Service Bus Middleware
• Connectivity Middleware
• Event-Driven Middleware
• Business Activity Monitoring
• Complex Event Processing Middleware
• Message-Oriented Middleware
• Process Automation Middleware
• Business Process Management Suites
• Standalone Process Servers
• Specialty Straight-Through Processing Middleware
• Other Integration/Process Automation Middleware
• Managed File Transfer Software
• Data Access, Analysis, and Delivery Software
• End-User Query, Reporting, and Analysis Tools
• Advanced Analytics Software
• Enterprise Resource Management Application
• Project/Portfolio Management Software
• Security Software
• Identity/Access Management Software
• Secure Content and Threat Management Software
• Security and Vulnerability Management Software
• Other Security Software
• Storage Software
• Data Protection and Recovery Software
• Archive/Hierarchal Storage Management Software
• File System Software
• Storage Management Software
• Other Storage Management Software
• Storage Infrastructure Software
• Storage Device Management Software
• Other Storage Software
• Systems and Network Management Software
• Event Automation Tools
• Job Scheduling
• Output Management Tools
• Performance Management Software
• Change and Configuration Management Software
• Problem Management Software
• Network Management Software
• Compliance Infrastructure Market: Services
• Security Services
• Consulting Services
• System Implementation Services
• Systems Management Services
• Education/Training Services
• Storage Services
• Consulting Service
• Implementation Service
• Management Service
• Maintenance Service
• Infrastructure Service
• Compliance IT Audit and Design Service
• IT Infrastructure Consulting/Integration
• IT Infrastructure Education and Training
• IT Infrastructure Operation, Support, and Management
• eDiscovery/Litigation Support Service
• eDiscovery Strategizing Service
• eDiscovery Document Management Solutions
• Evident Storage and Forensic Service
• Litigation Support Service
• Physical Records Keeping Service
• Physical Media Management Service
• Data Recovery Service
• Media Destruction Service
• Definition of Governance, Risk, and Compliance Management Solutions
• Financial Governance, Risk, and Compliance Management Applications
• Compliance and Risk Management Applications
• Business Assurance Analysis Application
• Financial Consolidation and Reporting Application
• Financial Performance and Strategy Management Software (Reference)
• Chief Compliance Officer Survey
• Survey Objective
• Survey Method
• Sample Profile
• Establishment of Compliance Promotion Organizations
• Stakeholders in Compliance and Associated Laws
• Compliance Infrastructure Market
• Compliance Infrastructure Hardware
• Compliance Infrastructure Software
• Compliance Records or Information Management Platform Software
• IT Governance, Risk, and Compliance Management Software
• Compliance-Related Shared Platform Software
• Compliance Infrastructure Services
• Governance, Risk, and Compliance Management Solutions Market
• Other Products/Services Implemented with Compliance Solutions
• Implementation of Other Related Hardware
• Implementation of Other Related Software
• Implementation of Other Related Services
• Compliance-Oriented Green IT and Virtualization Technologies
• Green IT and Compliance
• Virtualization Technologies and Compliance
• Mindshare of Solution Providers in the Compliance Market
• Mindshare of Solution Providers in the Compliance Market
• Mindshare of Solution Providers: Overall Results
• First Solution Providers Recalled
• 2008 Compliance Budgets
• 2008 Total IT Budget
• 2008 Compliance Budget
• Future Outlook
• 2009 Total IT Budget
• 2009 Compliance Budget
• Essential Guidance
• Learn More
• Related Research
• Synopsis
• Table: Compliance Infrastructure Classification by Function: Hardware
• Table: Compliance Infrastructure Classification by Function: Software
• Table: Compliance Infrastructure Classification by Function: Services
• Table: Financial Governance, Risk, and Compliance Management Application by Function
• Table: Sample Profile: Industry
• Table: Priority Compliance Laws by Department Type (%)
• Table: Priority Legislations (First-Priority) by Department Type (%)
• Table: Implementation of Compliance Infrastructure Hardware by Department Type (%)
• Table: Compliance Infrastructure Market: Implementation of Records/Information Management Platform Software by Department Type (%)
• Table: Compliance Infrastructure Market: Implementation of IT GRC Management Software by Department Type (%)
• Table: Compliance Infrastructure Market: Implementation of Shared Platform Software by Department Type (%)
• Table: Compliance Infrastructure Market: Implementation of Compliance Services by Department Type (%)
• Table: Implementation of Governance, Risk, and Compliance Management Solutions by Department Type (%)
• Table: Implementation of Other Hardware by Department Type (%)
• Table: Implementation of Other Software by Department Type (%)
• Table: Implementation of Other Services by Department Type (%)
• Table: Mindshare of Solution Providers in Compliance Market (Overall) by Department Type (%)
• Table: Mindshare of Solution Providers in Compliance Market (First Provider Recalled) by Department Type (%)
• Figure: Stakeholders and Compliance Laws
• Figure: Compliance Market Taxonomy
• Figure: Compliance Infrastructure Market Model
• Figure: Relationships Between Governance, Risk, and Compliance Management Solutions and Application Market
• Figure: Sample Profile by Company Size
• Figure: Sample Profile by Capital Size
• Figure: Sample Profile by Department
• Figure: Sample Profile by Company Type
• Figure: Sample Profile by Presence/Absence of Offshore Affiliates
• Figure: Existing Compliance Promotion Organizations by Department Type
• Figure: External Organizations Used to Promote Compliance by Department Type
• Figure: First-Priority External Organizations Used to Promote Compliance by Department Type
• Figure: Compliance Promotion Systems by Department Type
• Figure: Priority Stakeholders by Department Type
• Figure: First-Priority Stakeholders by Department Type
• Figure: Priority Compliance Laws by Department Type
• Figure: First-Priority Compliance Laws by Department Type
• Figure: Implementation of Compliance Infrastructure Hardware by Department Type
• Figure: Compliance Infrastructure Market: Implementation of Records/Information Management Platform Software by Department Type
• Figure: Compliance Infrastructure Market: Implementation of IT GRC Management Software by Department Type
• Figure: Compliance Infrastructure Market: Implementation of Shared Platform Software by Department Type
• Figure: Compliance Infrastructure Market: Implementation of Compliance Services by Department Type
• Figure: Implementation of Governance, Risk, and Compliance Management Solutions by Department Type
• Figure: Implementation of Other Hardware with Compliance Solutions by Department Type
• Figure: Implementation of Other Software with Compliance Solutions by Department Type
• Figure: Implementation of Other Services with Compliance Solutions by Department Type
• Figure: Implementation of Environmental Compliance Solutions by Department Type
• Figure: Implementation of Compliance-Related Virtualization Solutions by Department Type
• Figure: Mindshare of Solution Providers in Compliance Market (Overall Top 10) by Department Type
• Figure: Mindshare of Solution Providers in Compliance Market (First Provider Recalled) by Department Type
• Figure: Total IT Budget (Overall) 2008
• Figure: Total IT Budget (IT Departments) 2008
• Figure: Total IT Budget (Non-IT Departments) 2008
• Figure: Compliance IT Budget (Overall) 2008
• Figure: Compliance IT Budget (IT Departments) 2008
• Figure: Compliance IT Budget (Non-IT Departments) 2008
• Figure: Compliance IT Budget Breakdown (Overall) 2008
• Figure: Compliance IT Budget Breakdown (IT Departments) 2008
• Figure: Compliance IT Budget Breakdown (Non-IT Departments) 2008
• Figure: Compliance Service Budget Breakdown 2008
• Figure: Changes in Total Projected IT Budget (Overall) 2009
• Figure: Changes in Total Projected IT Budget (IT Departments) 2009
• Figure: Changes in Total Projected IT Budget (Non-IT Departments) 2009
• Figure: Changes in Projected Compliance Budget 2009 (Overall) 2009
• Figure: Changes in Projected Compliance Budget 2009 (IT Departments) 2009
• Figure: Changes in Projected Compliance Budget 2009 (Non-IT Departments) 2009