Cyber GRC Ideas Portal
ADD A NEW IDEA

IT and Cyber Compliance

Showing 57 of 130

Test Execution Report to display related objects linked to a control irrespective of Test Item

The request here is to leverage the "Test Execution" report which must display the control results along with its related objects that are mapped within the GRC library. This mean that if 'Test Item' is selected as "Control" specifically, it shoul...
Guest 2 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

NIST CSF v1.1 Assessment and Reporting Capabilities

Raiffeisen Schweiz Genossenschaft (one of our customers) was looking for NIST CSF (CyberSecurity Framework) v1.1 assessment & reporting capabilities in the tool. Based on the discussions with the customer, we realize that the below are gaps. ...
Guest over 2 years ago in IT and Cyber Compliance 1 Pending Roadmap Inclusion

Ability to add assignee from multiple orgs when Evidence tasks created using the Auto creation method

Problem Statement: The current EVM module provides an option to create Evidence request task to be auto created by providing the assignee details in the upload sheet. The system however validates the assignee details to be a part of Project owner ...
Guest over 1 year ago in IT and Cyber Compliance 0 Included in the Roadmap

Enable Reports and Dashboards to filter by Reporting Period

AON's Problem Statement: Without a reporting period, auditors, regulators, board members, and other stakeholders wouldn’t know the validity of compliance reports and the risk posed to our information assets, making it difficult to take important d...
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Configuring Design and Operating Effectiveness Values

Use Case: We use a shared responsibility model where some controls are provided by other parts of the org. Those controls are assessed separately and added to the evidence library for use in assessments of systems consuming the controls. My intent...
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Report to view Common and Sample Questions response

Report to view the Common and Sample question responses provided by the Assessors or control owners during the testing
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Ability to get multiple evidence request updated to Completed.

Ability to mark multiple evidence task as completed at once. The current setup requires a user to manually update the status and make each request maked as completed. In a scenario where there are multiple 100+ requests generated it becomes diffic...
Guest over 1 year ago in IT and Cyber Compliance 0 Included in the Roadmap

Ability to relate controls to evidence requests created using Generate Auto Evidence Request as Yes

The current functionality when evidences are created using Generate Auto Evidence Request as YES the upload sheet does not allow the use to relate the tasks to be related to any GRC objects like control. The assigne receiving this auto generated t...
Guest over 1 year ago in IT and Cyber Compliance 0 Included in the Roadmap

Ability to disable owner notifications when UCF data is imported into metricstream.

Expedia is looking for an option to disable the owner notifications in Create Library objects from Authority documents form. Currently they are receiving more than 4000 notifications when UCF data is imported into MetricStream.
Guest 11 months ago in IT and Cyber Compliance 0 Pending Roadmap Inclusion

Enable copy paste functionality in Sample table of test execution page

Martktplaats B.V would like to be able to paste evidence into the sample table (in test execution page). This would allow them to fully use MetricStream to handle evidences. Currently, customer does this using the spreadsheet uploads. Other GRC so...
Guest almost 2 years ago in IT and Cyber Compliance 1 Pending Product Manager's Review