Other RiskVision Applications

Other RiskVision applications are listed in the table below:

 ICON
 APPLICATION
 DESCRIPTION
Compliance ManagerCompliance Manager enables an organization to effectively manage and measure compliance programs across multiple regulations, standards, and frameworks. It also automates the compliance process through general computer controls (GCC) and questionnaires. Evidence and control results can be automatically collected through connectors or questionnaire results from business users. Data classification, ownership configuration, compliance assessment, mitigation, and reporting are all enabled. Compliance Manager also supports popular frameworks, standards, and regulations such as ISO 27002, CIS, HIPAA and PCI. This application improves process efficiency and integrity, as well as data quality and reliability.
Enterprise Risk ManagerEnterprise Risk manager is a comprehensive risk lifecycle management solution. It allows organizations to identify, assess, and mitigate risks with an appropriate risk treatment plan. Its flexible risk model supports both qualitative and quantitative methodologies, supporting the calculation of inherent risk, current risk, and residual risk with the context of mitigating controls. Enterprise Risk Manager features rich reports and dashboards, as well as easy to use risk assessment tools that enable organizations to understand and monitor their enterprise risk posture. It also includes out-of-the-box support for popular risk methodologies such as COSO, AZ/NZS 4360 and ISO.
Vendor Risk ManagerVendor Risk Manager enables organizations to audit and manage third-party risks, as mandated by regulations and standards such as ISO 27001, PCI, and FISMA. It classifies, assesses, and reports on third-party risk based on the standard control framework from shared assessment programs or an organization's custom control framework. It provides a portal where vendors participate in assessments and the results are retrieved by an organization's risk analysts. Vendors are classified automatically into appropriate tiers that are used to apply applicable controls. Delegated administration and automation features enable Vendor Risk Manager to scale to large vendor populations.
Policy ManagerPolicy Manager  enables the management of enterprise policies on a single centralized platform. Organizations can enforce policy and process standards across different locations, departments, and programs. It also supports simultaneous policy editing across multiple stakeholders using a rich WYSIWYG user interface. An organization can automate processes for policy authoring, reviewing and approval. Policy templates help enforce consistent formatting and structure. It has a highly configurable workflow enabling an organization to enforce change control and maintain accountability and it supports policy awareness campaigns with policy distribution, attestation, and comprehension testing tools.
Incident Manager Incident Manager enables organizations to collect, classify, and manage multiple IT and non-IT incidents. It's a single collection point for all incidents that are manually and automatically reported. It imports incidents reported from most monitoring systems and scanners, as well as Security Incident Management (SIM) solutions. All incidents, including business, operational, and environmental can be reported using the incident-reporting portal. Incidents are assessed based on configurable workflow and automatically created and classified based on rules that are tracked throughout the incident's lifecycle. Incidents are tied to controls, policies, and risks to provide closed-loop feedback for policy and control assessment and risk monitoring. Incidents are rated based on their criticality so that organizations can respond based on the impact to the business.