Cyber GRC Ideas Portal
ADD A NEW IDEA

All ideas

Showing 141 of 141

Risk Assessment task - Provide an option to display Guidance details in Control Effectiveness factors.

From Assessment Summary section in Risk Assessment task, Control Effectiveness section should display the guidance details of Control factors similar to the inherent factor rating details. Please add Control factors details to show autopopulated g...
Guest 9 months ago in IT and Cyber Risk 1 Pending Product Manager's Review

Customer wants to upload the data with closed status

Customers want to Fulfill the data in "Risk Assessment" Report without Triggering the workflow. They want this data for the Audit Purpose . basically, customer don't want to trigger the workflow, but they want Risk Assesmnets to be closed without ...
Guest 3 months ago in IT and Cyber Risk 0 Pending Product Manager's Review

Test Execution Report to display related objects linked to a control irrespective of Test Item

The request here is to leverage the "Test Execution" report which must display the control results along with its related objects that are mapped within the GRC library. This mean that if 'Test Item' is selected as "Control" specifically, it shoul...
Guest 6 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Option to create a Control test plan with random set of controls

Customers Use case is to have an option where a Test plan can be created with random set of controls instead of the current manual selection of controls in Test Plan.For example, from the current list of say 350 controls, customer wants to select ...
Guest 3 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Assets Report has no relevant columns or filters for IP-Based Host Attributes

When viewing the Assets Report ,the only column/filter available for IP-Based Assets is Serial No. We at least need to be able to use the columns/filters for DNS Name (FQDN), MAC Address, IPv4 Address.
Guest 8 months ago in CYBERGRC 0

Ability to Reopen Risk Assessments after the approval

Many of the customers are required to make changes to completed Risk Assessments based on the facts that are identified and needs to updated instead of creating new Risk Assessment and perform it from scratch.
Guest about 3 years ago in IT and Cyber Risk 0 Pending Product Manager's Review

NIST CSF v1.1 Assessment and Reporting Capabilities

Raiffeisen Schweiz Genossenschaft (one of our customers) was looking for NIST CSF (CyberSecurity Framework) v1.1 assessment & reporting capabilities in the tool. Based on the discussions with the customer, we realize that the below are gaps. ...
Guest almost 3 years ago in IT and Cyber Compliance 1 Pending Roadmap Inclusion

Detailed Description of errors and messages in the Upload Templates

Verizon team indicated that the error messages in the upload template are not user friendly. Unless there is a trianing and documented the error messages, it's not easy to perform data uploads. Ex: Unable to run the infolet or the value entered is...
Guest about 3 years ago in IT and Cyber Risk 0 Pending Product Manager's Review

Enhancement Request: NIST CSF Spider Chart Filter

As a tool user I would like to be able to filter the NIST CSF Spider Chart on the NIST CSF Dashboard such that I can filter by NIST CSF Core Function (Identify, Protect, Detect, Respond, Recover) as there are too many data points which overlap to ...
Guest 11 months ago in CYBERGRC 0

[BMC]IT-GRC Integration(threat) with BMC Remedy

Hi Team, We have a partner who is implementing Cyber-IT for BMC(customer), below is what they have asked to start with:- "Requirement is to ensure once a threat is created in MetricStream platform then the information is pushed to BMC Remedy and t...
Guest almost 3 years ago in IT and Cyber Risk 0 Pending Product Manager's Review