IT and Cyber Compliance

The request here is to leverage the "Test Execution" report which must display the control results along with its related objects that are mapped within the GRC library. This mean that if 'Test Item' is selected as "Control" specifically, it shoul...

AON's Problem Statement: Without a reporting period, auditors, regulators, board members, and other stakeholders wouldn’t know the validity of compliance reports and the risk posed to our information assets, making it difficult to take important d...

Use Case: We use a shared responsibility model where some controls are provided by other parts of the org. Those controls are assessed separately and added to the evidence library for use in assessments of systems consuming the controls. My intent...

Report to view the Common and Sample question responses provided by the Assessors or control owners during the testing

Martktplaats B.V would like to be able to paste evidence into the sample table (in test execution page). This would allow them to fully use MetricStream to handle evidences. Currently, customer does this using the spreadsheet uploads. Other GRC so...

Currently, when we attempt to add Question and Procedures from library in the Questionnaire form under surveys, the QP popup window does not have filter options to choose right set of QPs. This is creating lot of inconvenience to customer when the...

Raiffeisen as part of it's use-case testing would like to • Identify risks which aren’t covered by any control• Identify assets which are not affected by a dedicated risk I tried Orphans - but the Assets are related to the Orgs and the Risks relat...

Adidas would like the Evidence Management (Project) to have a recurring Frequency - this can be useful for evidence that needs to be gathered once a quarter or once a year for example - they can then setup the project just once and the request rec...

There should be an import status progress report The object levels should be added to Framework Referece object Imported Questions and Procedures should be mapped to the respective controls

When we import the ADs into GRC libraries a simple report on the import status (primary key as import id) is needed. The report should have both details and summary stats. Summary status can be around - no of controls, no of requirements, no of q&...