Cyber GRC Ideas Portal
ADD A NEW IDEA

IT and Cyber Compliance

Showing 13

Option to create a Control test plan with random set of controls

Customers Use case is to have an option where a Test plan can be created with random set of controls instead of the current manual selection of controls in Test Plan.For example, from the current list of say 350 controls, customer wants to select ...
Guest 3 days ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Test Execution Report to display related objects linked to a control irrespective of Test Item

The request here is to leverage the "Test Execution" report which must display the control results along with its related objects that are mapped within the GRC library. This mean that if 'Test Item' is selected as "Control" specifically, it shoul...
Guest 3 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Enable Reports and Dashboards to filter by Reporting Period

AON's Problem Statement: Without a reporting period, auditors, regulators, board members, and other stakeholders wouldn’t know the validity of compliance reports and the risk posed to our information assets, making it difficult to take important d...
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Configuring Design and Operating Effectiveness Values

Use Case: We use a shared responsibility model where some controls are provided by other parts of the org. Those controls are assessed separately and added to the evidence library for use in assessments of systems consuming the controls. My intent...
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Report to view Common and Sample Questions response

Report to view the Common and Sample question responses provided by the Assessors or control owners during the testing
Guest 10 months ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Enable copy paste functionality in Sample table of test execution page

Martktplaats B.V would like to be able to paste evidence into the sample table (in test execution page). This would allow them to fully use MetricStream to handle evidences. Currently, customer does this using the spreadsheet uploads. Other GRC so...
Guest about 2 years ago in IT and Cyber Compliance 1 Pending Product Manager's Review

Need filter options in QP selection popup from Surveys

Currently, when we attempt to add Question and Procedures from library in the Questionnaire form under surveys, the QP popup window does not have filter options to choose right set of QPs. This is creating lot of inconvenience to customer when the...
Guest over 3 years ago in IT and Cyber Compliance 1 Pending Product Manager's Review

Ability to identify Risks not covered by any controls in the IT compliance product

Raiffeisen as part of it's use-case testing would like to • Identify risks which aren’t covered by any control• Identify assets which are not affected by a dedicated risk I tried Orphans - but the Assets are related to the Orgs and the Risks relat...
Guest about 2 years ago in IT and Cyber Compliance 0 Pending Product Manager's Review

Evidence Management Frequency

Adidas would like the Evidence Management (Project) to have a recurring Frequency - this can be useful for evidence that needs to be gathered once a quarter or once a year for example - they can then setup the project just once and the request rec...
Guest over 2 years ago in IT and Cyber Compliance 0 Pending Product Manager's Review

UCF content - tracking the data import process should improve

There should be an import status progress report The object levels should be added to Framework Referece object Imported Questions and Procedures should be mapped to the respective controls
Guest over 2 years ago in IT and Cyber Compliance 0 Pending Product Manager's Review