All ideas

We have a feedback from AON where on one of the popups on the control testing where the list of sample and common questions do not appear wrapped to show the question content. Also, the Columns on this cannot be adjusted. Is this by design or a te...

NIST SP 800-30 NIST Cybersecurity Framework is popular among companies in the US. NIST has become the gold standard for assessing cybersecurity maturity, identifying security gaps, and meeting cybersecurity regulations. Using our IT- risk module w...

I would like to request a function where if you want to edit the relationship list (add or remove) the pop-up window for the option shows what has already been selected previously. Currently if you want to edit it, the list does not show which one...

In case Dynamic IP Address scenarios the assets in a customer network are reused and assigned Dynamically. Based on this scanners like QualysGuard when they capture the Vulnerability and later send it to MetricStream via the connector based integr...

Hi Team, The current control popup in the Create GRC library from in UCF does not allow a user to search and select controls by Control names or ID. IF we use the column based filter the selection gets cleared making the search functionality not u...

Hi Team, The current control selection popup in Create GRC library in UCF form does not have the ability to search control by Control name or iD. Could you please have these two values available so that the user can search and improve the usabilit...

Currently, when we attempt to add Question and Procedures from library in the Questionnaire form under surveys, the QP popup window does not have filter options to choose right set of QPs. This is creating lot of inconvenience to customer when the...

Risk Assessment Algorithm : There is no option to add a conditional statement in Risk Assessment Algorithm Customer has multiple sub factors to calculate impact and Likelihood, and the formula for Impact and Likelihood has conditional statements t...

Assuming a scenario where a specific assessable entity has 25 risks associated and the risk assessment is completed. After few days, the same assessable entity needs to be reassessed where in the 24 out of 25 risks is unchanged and only one risk h...

In the Vulnerability Management use case we see that the clients setup Remediation Rules for the Critical - Combined Risk Rating or other criteria's where remediation to be initiated as soon as the vulnerability is pulled into MetricStream. This l...