IT and Cyber Compliance

UseCase: Step 1: User1 (Initiator) creates a Project and submits for Approval. Step 2: Task is triggered to Approver for Approval Ask is till the Approver approves, there is no entry in the ‘Projects’ report. We would need a Report which can track...

Hi Team, Currently in compliance or risk module during the control assessment or risk assessment when the user tried to add the issue the user is unable to find the option to add the actions. But for LSM and audits the users are able to create the...

Reminder emails and Overdue emails frequency should be configurable. This is in reference to ISM email configuration where a frequency can be set and stopped after certain number of repetitions. Currently there exists no parameters.

There exists no Dashboards, Metriccards available today in Evidence Management module. There needs to be a chart at the minimum to show case How many Evidences are Completed, Approval Pending, Clarification Requested etc. specific to a Project. Ho...

In Evidence Management when creating a Project, Request Id and Request Name are provided via the spreadsheet. We need a Due Date against the Request Id (i.e. at each row level). Use Case: Customer receives the Requests from the Auditor for a speci...

The request here is to leverage the "Test Execution" report which must display the control results along with its related objects that are mapped within the GRC library. This mean that if 'Test Item' is selected as "Control" specifically, it shoul...

Customers Use case is to have an option where a Test plan can be created with random set of controls instead of the current manual selection of controls in Test Plan.For example, from the current list of say 350 controls, customer wants to select ...

AON's Problem Statement: Without a reporting period, auditors, regulators, board members, and other stakeholders wouldn’t know the validity of compliance reports and the risk posed to our information assets, making it difficult to take important d...

Use Case: We use a shared responsibility model where some controls are provided by other parts of the org. Those controls are assessed separately and added to the evidence library for use in assessments of systems consuming the controls. My intent...

Report to view the Common and Sample question responses provided by the Assessors or control owners during the testing