ASCE & EGRAM Frequently Asked Questions
Have questions about EGRAM or ASCE? You’re in the right place. Here you’ll find answers to some of the most common questions.
EGRAM (Enterprise Governance, Risk, Assurance and Measurement) is a model developed by ALARP Solutions to help organisations strengthen governance, manage risk, and demonstrate compliance. It uses structured, evidence-based logic to show whether an organisation’s assets, services, and governance arrangements are “in good shape” and aligned with its objectives.
EGRAM is delivered as a plugin inside Adelard’s Assurance and Safety Case Environment (ASCE). ASCE is a globally trusted platform for safety and assurance cases. By integrating EGRAM, organisations can apply governance, risk, and assurance frameworks within ASCE, creating a single environment for compliance and assurance management.
EGRAM is suitable for any organisation that needs to demonstrate accountability, compliance, or governance maturity. It is especially valuable for:
Large or complex organisations with multiple assets or services
Enterprises facing strong regulatory or public scrutiny
Industries such as defence, nuclear, aviation, energy, transport, construction, and asset management
Regulatory or investigative bodies
Unlike spreadsheets or siloed systems, EGRAM provides:
A structured logical framework using Claims, Arguments, and Evidence (CAE)
A pre-populated template of 215 nodes aligned with international standards (ISO 9001, ISO 31000, ISO 55001, etc.)
Dashboards and reporting tools for real-time insight into sufficiency, effectiveness, ownership, and progress
Integration with ASCE to ensure assurance cases and governance cases are handled consistently
EGRAM helps leaders answer two fundamental questions:
Is our organisation in good shape?
Are our assets and services in good shape?
It reduces complexity by showing how processes, controls, and evidence link back to strategic outcomes. Executives gain confidence that governance arrangements are defensible, resourced, and legally compliant.
Yes. The EGRAM schema was designed to map against common standards such as ISO 9001 (Quality), ISO 31000 (Risk), ISO 55001 (Asset Management), ISO 45001 (Safety), ISO 27001 (Information Security), ISO 14001 (Environment), and ISO 22301 (Business Continuity). This allows organisations to streamline compliance evidence across multiple frameworks.
EGRAM requires organisations to attach evidence or controls to each requirement. Evidence is assessed using the PSOE framework:
Present – Does the evidence exist?
Suitable – Is it fit for purpose?
Operating – Is it being applied as intended?
Effective – Is it achieving the desired outcome?
Dashboards then provide colour-coded status updates on sufficiency and effectiveness, making gaps and risks visible.
The EGRAM plugin comes with a ready-to-use Template Solution that includes all 215 nodes pre-populated with logic and requirements. Organisations can open the template in ASCE, save it as a new project, and immediately begin populating evidence. This means EGRAM can be deployed “out of the box” without lengthy configuration.
EGRAM centralises evidence and links it directly to governance requirements. This enables:
Clear traceability for regulators and auditors
Reduced audit preparation time
A defensible line of evidence showing compliance with obligations
Visual dashboards to communicate progress and gaps to executives
Yes. While EGRAM was designed for enterprise governance, its logical framework can be extended to safety cases, security cases, and environmental cases, ensuring organisations manage all assurance activities within a single framework.
As the exclusive ASCE partner and reseller in the Indo-Pacific, ALARP Solutions provides:
Training and onboarding for EGRAM users
Customisation and mapping to specific regulatory contexts
Expert support in governance, risk, and assurance
Implementation assistance, including linking EGRAM to organisational systems and controls
