<?xml version="1.0" encoding="UTF-8"?><ns2:project xmlns:ns1="http://gtr.rcuk.ac.uk/gtr/api" xmlns:ns2="http://gtr.rcuk.ac.uk/gtr/api/project" xmlns:ns3="http://gtr.rcuk.ac.uk/gtr/api/fund" xmlns:ns4="http://gtr.rcuk.ac.uk/gtr/api/person" xmlns:ns5="http://gtr.rcuk.ac.uk/gtr/api/project/outcome" xmlns:ns6="http://gtr.rcuk.ac.uk/gtr/api/organisation" ns1:created="2026-06-03T15:52:43Z" ns1:href="http://gtr.ukri.org/gtr/api/projects/07B15F7B-2BA3-44D1-8DBF-AB9067BB1B26" ns1:id="07B15F7B-2BA3-44D1-8DBF-AB9067BB1B26"><ns1:links><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/persons/9F641EC5-3122-4E5C-9CB9-F630FDFBFF6B" ns1:rel="PM_PER"/><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/organisations/41002F20-F0C1-401A-A917-6C8462F2AB77" ns1:rel="LEAD_ORG"/><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/organisations/41002F20-F0C1-401A-A917-6C8462F2AB77" ns1:rel="PARTICIPANT_ORG"/><ns1:link ns1:end="2021-06-29T23:00:00Z" ns1:href="http://gtr.ukri.org/gtr/api/funds/447E3EB8-5BF2-4D1C-BD60-93C8251518C9" ns1:rel="FUND" ns1:start="2020-09-30T23:00:00Z"/></ns1:links><ns2:identifiers><ns2:identifier ns2:type="RCUK">79733</ns2:identifier></ns2:identifiers><ns2:title>RiskAnalysis.AI</ns2:title><ns2:status>Closed</ns2:status><ns2:grantCategory>Collaborative R&amp;D</ns2:grantCategory><ns2:leadFunder>Innovate UK</ns2:leadFunder><ns2:abstractText>Technology can be a great enabler for governing organisations while effectively managing their risk, compliance, resilience, privacy and security posture. There are platforms and solutions that exist for this purpose and are collectively called Enterprise Governance, Risk and Compliance solutions (eGRC) or Integrated Risk Management solutions. The technology and data models that underpin most of these solutions are out of date and were built to handle only a handful of simple relationships -- such as a few risks and controls that were involved. As our understanding of the risk landscape improved and the data sources started increasing in size, nature and complexity, these solutions are struggling to keep up, making effective risk management and decision making difficult. The increased regulatory scrutiny and improved focus on risk in the post-COVID-19 world, makes it even more important to have a holistic view of your risk and compliance data.

We are proposing a ground-up refactoring of eGRC platforms based on the concept of Enterprise Knowledge Graphs. We will use graph database and technologies to specifically address the challenges brought in by today's hyperconnected datasets. We will create a reference architecture, which can be leveraged to build solutions on this platform, to address specific problems in one or more of the following areas,

1. Risk Management
2. Issue/Incident Management
3. Regulatory Compliance Management
4. Data Privacy Management
5. Change Management

Graph database is an emerging technology, which is designed to store data relationships as first class citizens. This can be leveraged to create knowledge graphs, which can then be used for machine learning and Artificial Intelligence. In November 2019, Gartner predicted that graph technologies will grow by 100% year on year for the next few years. However, in the post-pandemic world, this would be much higher as graph technologies have suddenly been thrust to the forefront and are used to deal with everything from COVID-19 clinical trials to modelling the effects of the pandemic in various industries and market segments.

The key outcome of the project is a Minimum Viable Product (MVP) which can be used as a capability demonstrator, in order to secure early stage clients and/or further investment for the continued development of the product.</ns2:abstractText></ns2:project>