IT and Cyber Risk

Problem Faced by Lazada: Today the available report which displays all the risk assessment details for a plan has limited data( limited to risk assessment status) but does not provide risk rating details that are available in the ootb risk registe...

Risk Assessment - Quantitative factors - Option to add multiple levels in a hierarchical factor Customer wants to create a Hierarchical factor with 2 sub-levels where second level to identify the maximum value of a set of factors and 1st level is ...

Users wants the risk Rating for the Inherent Risks/Residual Risks Breakdown by Category Report to be in logical order like : Report to be: Low, Moderate, High, and Very High. Currently, in the MSU system Sorting is applied in alphabetical order. P...

NIST SP 800-30 NIST Cybersecurity Framework is popular among companies in the US. NIST has become the gold standard for assessing cybersecurity maturity, identifying security gaps, and meeting cybersecurity regulations. Using our IT- risk module w...

I would like to request a function where if you want to edit the relationship list (add or remove) the pop-up window for the option shows what has already been selected previously. Currently if you want to edit it, the list does not show which one...

In case Dynamic IP Address scenarios the assets in a customer network are reused and assigned Dynamically. Based on this scanners like QualysGuard when they capture the Vulnerability and later send it to MetricStream via the connector based integr...

Risk Assessment Algorithm : There is no option to add a conditional statement in Risk Assessment Algorithm Customer has multiple sub factors to calculate impact and Likelihood, and the formula for Impact and Likelihood has conditional statements t...

Assuming a scenario where a specific assessable entity has 25 risks associated and the risk assessment is completed. After few days, the same assessable entity needs to be reassessed where in the 24 out of 25 risks is unchanged and only one risk h...

In product's roadmap will there be interactions between IT Risk and IT Compliance Modules. For eg: Failure of a control and the creation of an issue in the IT compliance module does not change the Risk score in the IT Risk module. As this is suppo...

Very often customers have threat data they want to upload/use, but do not have a threat vector defined for them. Can we make this field optional, or perhaps add values of Other or TBD.