Governance, risk and compliance specialist, TraceSecurity, has expanded its efforts to simplify IT GRC for organisations managing security threats, by introducing a number of enhancements. These are being targeted at areas such as workflow infrastructure, functional testing and risk object attachment.
A new Slim Risk Workflow Infrastructure reduces the time required to identify risk, enabling users to focus on a single-asset risk assessments, while maintaining the ability to run a full assessment for a more comprehensive and detailed outcome, while a new Risk Object Attachments capability centralises risk object documentation, enabling users to attach supporting information to risk objects such as threats, assets and controls. This puts necessary information in the hands of the user to reduce the time an effort involved in performing risk assessments.
A new Testing Functional Area ensures that employee’s understand training courses and policy documentation with user completed tests that are directly related to the company’s educational materials and policies.
The enhancements also include a new Multi-Scanner Harmony capability which simultaneously identifies threats from multiple vulnerability scanners, creating a multi-layered vulnerability management tool.
“We continuously enhance TraceCSO based on our customer’s requests, such as these new feature enhancements that further exemplify our objective of simplifying IT GRC management for organisations of all sizes and skill sets,” stated Peter Stewart, President and CEO of TraceSecurity. “Customers searching for ways to minimise the time it takes to perform focused risk assessments and address risks due to lack of security awareness in their personnel will see immediate benefits from these enhancements.”
TraceCSO allows organisations of any size, industry or security skill set to evaluate, create, implement and manage a comprehensive cloud-based, risk-based information security program, to protect their organisations from today’s top information security risks. TraceCSO identifies and prioritises risk to an organisation’s information – including network vulnerabilities – and identifies, implements and audits security controls.
To help organisations stay current with the latest regulatory mandates specific to their industry, TraceCSO leverages a global database of hundreds of authorities and more than 75,000 regulations and citations.