Skip to Main Content
Cyber GRC Ideas Portal
ADD A NEW IDEA

IT and Cyber Risk

Showing 42 of 130

Define Metrics for Threats and Vulnerabilities

Want to be able to define and track KRIs for Threats and Vulnerabilities
Guest over 4 years ago in IT and Cyber Risk 2 Need more information

IT Risk Assessment form: Ability to show Question name as response filed header for free text columns

If there are more number of questions in assessment secion, when assessor click on response then customer need to know for which question, they need to provide response.
Guest over 2 years ago in IT and Cyber Risk 0 Pending Product Manager's Review

[Siemens Energy] Ongoing Migration of Risk Assessments

Ask - Siemens Energy Cyber Risk Team uses MetricStream Qualitative Risk Assessment approach as of now. Use Case - While the Cyber Risk Team uses our tool to perform risk assessment, they want to migrate risk assessments of different teams/subsidia...
Guest almost 3 years ago in IT and Cyber Risk 0 Pending Product Manager's Review

[Siemens Energy] Segregation of risks, corresponding risk assessment plans, risk assessments, issues/actions between Cyber Risk and Business Risk

Ask - Segregation of risks, corresponding risk assessment plans, risk assessments, issues/actions between Cyber Risk and Business Risk. In customer words - separate the data visibility between RIC and CYS. Use Case - There are two teams in Siemens...
Guest almost 3 years ago in IT and Cyber Risk 0 Pending Product Manager's Review

Support for NIST SP 800-30 Risk Management Framework.

NIST SP 800-30 RMF is fast becoming a mandate for information security risk assessments for federal entities.
Deleted User over 8 years ago in IT and Cyber Risk 0 Included in the Roadmap

CMDB connector - Provide configuration to restrict data

Product should have configuration option to restrict data as per need. Ideally we should have configuration which should allow to define rule(s) so we can restrict data consumption as per need. Currently CMDB connector pulls anything/everything fr...
Guest almost 3 years ago in IT and Cyber Risk 0 Pending Roadmap Inclusion

CMDB Connector- Provide Configuration option to remap the data consumption process

Product should have configuration option to address remap the different set of data to asset Library. Currently CMDB Service data get ingested as Process in Metricstream. CMDB service table stores all high level service information which is high l...
Guest almost 3 years ago in IT and Cyber Risk 0 Pending Roadmap Inclusion

Set up Assessment type form - Please consider adding product as an option

Can we please have product also as an option along with the existing ones.
Guest about 3 years ago in IT and Cyber Risk 1 Pending Product Manager's Review

Few suggestions to enhance the IT Risk Assessment form and the workflow.

When multiple rows are added in the scope selection section of the Risk Assessment form and a questionnaire is selected, system sends the questionnaire to the entire list of scoped items as just one assessment. Expected - In the 'Perform IT Risk A...
Guest about 3 years ago in IT and Cyber Risk 0 Pending Roadmap Inclusion

Ability to add multiple controls at once at Control Effectivness section in the Risk Assessment form

As of today, application allows to select multiple controls in the control effectivness section inside risk assessment form but not able to submit with multiple controls. This is a common scenario to have multiple controls for a risk that is getti...
Guest about 3 years ago in IT and Cyber Risk 0 Pending Roadmap Inclusion