Cyber GRC Ideas Portal
ADD A NEW IDEA

All ideas

Showing 10

Risk Assessment - Quantitative factors - Option to add multiple levels in a hierarchical factor

Risk Assessment - Quantitative factors - Option to add multiple levels in a hierarchical factor Customer wants to create a Hierarchical factor with 2 sub-levels where second level to identify the maximum value of a set of factors and 1st level is ...
Guest over 1 year ago in IT and Cyber Risk 3 Need more information

Auto create Evidence GRC Object when a Evidence is attached during a Control Self Assessment.

As per the current Solution, the User can relate the Evidence while performing a control test or self-assessment. AON has requested that Evidence be auto-created in the GRC Library when Evidence is attached ("Attach Evidence" attribute) during a C...
Guest about 1 year ago in IT and Cyber Compliance 0 Need more information

option of adding test methodology at task level

initiator self assessment /test plan should have option of adding methodology at task level. Each task can have unique methodology Product Team: Can you provide more information? What are the methodologies and what should be the behavior for each ...
Guest about 1 year ago in IT and Cyber Compliance 1 Need more information

Risk Assessment Algorithm : There is no option to add a conditional statement in Risk Assessment Algorithm

Risk Assessment Algorithm : There is no option to add a conditional statement in Risk Assessment Algorithm Customer has multiple sub factors to calculate impact and Likelihood, and the formula for Impact and Likelihood has conditional statements t...
Guest over 1 year ago in IT and Cyber Risk 1 Need more information

Define Metrics for Threats and Vulnerabilities

Want to be able to define and track KRIs for Threats and Vulnerabilities
Guest over 4 years ago in IT and Cyber Risk 2 Need more information

Adding all vulenrability detail pulled from tenable or other connectors to Vulnerability scan results report

Adding all vulnerability detail pulled from tenable or other connectors to Vulnerability scan results report Otherwise, provide different reports for different connectors
Guest about 5 years ago in Threat & Vulnerability Management 1 Need more information

Asset Library data should get pulled from Connector

PIF use Tenable as Connector and we should pull Asset Library data from the connector only and to create GRC library - Asset for it like UCF instead of asking users to create asset in GRC library as well
Guest about 5 years ago in Threat & Vulnerability Management 0 Need more information

For MS(GRCF)-CMDB, integration Rule engine to implement Organization sepcific rules.

While fetching the GRCF data from CMDB using integration, a Rule engine can be implement that will help us in configuring the Organization specific rules around assets(CIA values or other attributes). For ex: Bank ABC have a requirement that all d...
Guest almost 8 years ago in Threat & Vulnerability Management 1 Need more information

Automatic closure of vulnerability remediation tickets.

For an Asset - Vulnerability pair in scan n for which the Vulnerability is not detected in scan n+1 any ticket that was triggered for this Asset - Vulnerability pair should be closed automatically. There should be a configuration to enable or disa...
Deleted User over 8 years ago in Threat & Vulnerability Management 0 Need more information

Add area of Compliance - Findings/Issues tab in IT Compliance and needs to be carried over to downstream form and reports

Add 'Area of Compliance' - Findings/Issues tab in IT Compliance and needs to be carried over to downstream form and reports
Guest almost 8 years ago in IT and Cyber Compliance 1 Need more information