For customers using RiskVision to build and deploy a risk and compliance management solution, there are two main components:
Entity Types
The following list describes the predefined entity types:
Icon | Entity | Description |
---|---|---|
Account | Account or login information pertaining to privileged access of financial accounts, computer applications, etc. | |
Application | Software applications that are critical to a company's operation, for example, financial reporting, CRM, procurement, change management, incident management, and database applications. | |
Computer | Computers, servers of different types (file, database, authentication), notebooks, laptops, etc. Predefined subtypes such as Desktop and Notebook. | |
Data | Specific data that may be critical to operations and are important enough to be classified and tracked on their own, for example, account numbers, customer lists, documents containing product formulas, market-sensitive information, intellectual property, etc. | |
Device | Other network devices such as routers, switches, printers, VPN, etc. | |
Domain | An Active Directory domain. | |
Financial | Entities related to financial resources such as stocks, bonds, cash, etc. | |
Group | An Active Directory security group. | |
Intangible | Entities such as intellectual property, product secrets and proprietary information, etc. | |
Location | Physical or geographical locations, real estate, offices, etc. | |
Mobile Device | Mobile devices are entities, such as mobile phone, personal digital assistant (PDA), and much more that are allowed by organizations under the Bring your own device (BYOD) policy. Employees bring their mobile devices to access email, file servers, and critical applications. Track and assess all employee-owned devices by creating or importing a Mobile Device entity type. | |
Network | Computer network infrastructure like subnets and wireless networks. | |
Network Device | Network devices such as firewall, routers, modems, etc. | |
Organizational Unit | An Active Directory organizational unit. | |
Person | Individuals within an organization where compliance and risk are managed by the RiskVision system. Also linked as users of applications, processes, documents, and storage. | |
Physical | Non-computer entities such as mechanical, manufacturing, and production equipment, vehicles and capital goods. | |
Process | Business operations such as order entry, payment transaction, accounts payable and receivable, shipping and receiving, RMA, etc. | |
Project | Shows individual entity assessments defined as part of a larger program. | |
Vendor | Organizations or entities outside your own enterprise for which you want to apply and monitor control compliance and calculate risk. |