All ideas

Users can raise request/ticket for server movement, new server commissioning, production movement etc., This will trigger Nexpose scan on the target IP by TVM coordinator Once the vulnerability scan results are out and no issues are triggered, the...

As part of UCF integration we are able to present the Harmonized controls available among different regulations in a report. But we don't have a report which shows the testing status of these harmonized controls. Use case: We have many controls ...

When assets are pulled in from CMDB Service Now IP address information is not held. Therefore the scanner will pick up many IP addresses where the Asset is available but no IP information is entered. The ask is to include in M7 the ability to conf...

Risk Register Report Visibility Issue - - Cleanest option recommended by MetricStream product team. Trackr rasied : 289326 Risk Assessments will only appear when the appropriate activities are added to the user role. The logic will apply here:...

While we measure asset performance and IT Risk... we miss the common problem of evaluating the risk of a PROPOSED system, tracking the status (proposed, approved, sunsetting, etc) and supporting the SDLC lifecycle.

The ability to mass re-assign in the case that someone leaves or changes responsibilities, etc.

Need ability to copy IT Compliance Test Plan with an option to change meta data of plan including details, testing scope, dates, attachments etc. before publishing the plan

Findings tab needs to include 'Related Sub Items' in addition to 'Related Items' so as to enable the user to know exactly which related object failed while testing. Say if you are testing Assets by testing its related controls, you should be able ...

Add 'Area of Compliance' - Findings/Issues tab in IT Compliance and needs to be carried over to downstream form and reports

We need ability to reopen control testing task and assign it to tester or approver based on system parameter