Cyber GRC Ideas Portal
ADD A NEW IDEA

All ideas

Showing 130 of 130

Update to Library Object characteristics when doenloading the objects from UCF

At the moment, 4 library objects can be created from the UCF content: Controls, Area of Compliance, Requirements and Question/ Procedure. The characteristics captured at the download time do not align with the characteristics of the object when it...
Guest almost 8 years ago in IT and Cyber Compliance 1 Pending Roadmap Inclusion

Need to prefix IDs for all GRC Objects that are imported from UCF

This requirements is from one of our customer CBS. They want to use UCF controls to assess their IT Assets along with their standard controls. Today they are not able to distinguish controls based on control IDs. Since control IDs are ones which i...
Guest almost 8 years ago in IT and Cyber Compliance 1 Pending Roadmap Inclusion

Reuse Ownership information across all objects when GRC libraries copied from UCF

When GRC libraries are copied from UCF, ownership information needs to be entered for all objects. This is not so user friendly when the owners are same for all objects. if we can have check box for same owners across all objects, it is more user ...
Guest almost 8 years ago in IT and Cyber Compliance 1 Pending Roadmap Inclusion

Risk Posture Reports - dynamic adaptability to configuration

Currently risk posture reports break down when the risk levels are changed from a scale of 3 to a scale of 5. Risk acale configuration is a standard level of configuration we offer within the product. As a result any report taking in this informat...
Guest about 8 years ago in IT and Cyber Risk 2 Cannot be considered in the Roadmap

scorecard generation based on self assessments/test results across BUs in the form of reports

customers buy us for reporting. They have to look smart in front of senior management, efficient and slick reporting makes their life easy and makes them look smart in front of their bosses. IT compliance reports are not very intuitive, but they c...
Guest about 8 years ago in IT and Cyber Compliance 1 Cannot be considered in the Roadmap

Need ability to turn off/on any fields on the control test plan form

Need ability to turn off/on any fields on the control test plan form
Guest about 8 years ago in IT and Cyber Compliance 1 Cannot be considered in the Roadmap

Contextualize/ auto suggest possible controls to policies, risks, requirements to truly automate grc

We have UCF integration but the system should suggest mappings to GRC objects and aid users to add suggested requirements/risks/policies when they are creating their GRC program design in the set up stage…. We lack context…People want this level o...
Guest about 8 years ago in IT and Cyber Compliance 2 Cannot be considered in the Roadmap

summary dashboard for UCF content that is dynamic and allows to choose multiple regs, frameworks

we also need scorecard type views that are drill downable that shows results of testing/self assessments statuses to requirements that are met or not met.
Guest about 8 years ago in IT and Cyber Compliance 1 Cannot be considered in the Roadmap

Ability to view policy documents from PDMS under 'Contextual Information' within the the Test Execution form

We implemented this within CSIG NA where we have enhanced the report 'References (Mapping with GRC Content)' to pull in policy documents (inline and attached) as reference objects. This way we can test controls with respect to a policy. This is al...
Guest over 8 years ago in IT and Cyber Compliance 1 Cannot be considered in the Roadmap

Need the ability to provide One time upload of data for - ISO 27001, ISO 27002, HIPPA, HIPPA Security Rule, PCI DSS v3.1 and NIST 800-53

Need the ability to provide One time upload of data for - ISO 27001, ISO 27002, HIPPA, HIPPA Security Rule, PCI DSS v3.1 and NIST 800-53. I know some of the data are available as part of UCF content, but this customer is not buying UCF and they wa...
Guest over 8 years ago in IT and Cyber Compliance 2 Pending Roadmap Inclusion