Are audits and compliance-related busy work taking up too much of your time?
Finally, an aﬀordable and simple compliance management tool.
The Compliance Manager simpliﬁes the complexity of getting compliant and eases your burden of staying compliant year round.
Managing Governance, Audits, and Compliance
Today, most organizations are required to follow some type of regulation. Almost all of us need to comply with PCI-DSS, but often that is combined with other regulations such as HIPAA. Even if you are not required by law to comply with any regulations, you may be following an internal risk framework, internal policies & procedures, or an industry best practices framework such as NIST or ISO. Managing compliance for one regulation or framework is time consuming. Having multiple regulations sometimes means you have to create an entire and expensive compliance department.
CM eﬀectively reduces the time you need to satisfy all of the requirements necessary to meet compliance goals, leading to signiﬁcantly less time and money spent dealing with compliance and audits.
Quick Implementation with Compliance Requirements Templates
Using the built-in quick setup capability, CM can have you on your way to (improved) compliance fast. Whether you need to comply with PCI, HIPAA , or other Regulations or Frameworks, Compliance Experts have created pre-built requirements templates for the most widely used regulations. Compliance experts create new templates as regulations change or are updated… there is no need for you to monitor confusing changes in regulations any more.
Evidence Repository and DocuLinks
CM gives you two ways of maintaining audit evidence and documentation. You can either upload ﬁles to be securely stored in the cloud, or provide a URL that links to an existing document or location of evidence ﬁles.
The Evidence Repository allows you to safely and securely store policies, procedures, and compliance/audit evidence for each of your controls and tasks. Having audit evidence readily available for auditors to review, will help to limit the amount
of time an auditor has to spend on-site, taking valuable time away from your work day.
Compliance Dashboards with Automated Reminders
The ECM Compliance Dashboards are simple to use and easy to understand. They allow you to quickly see what tasks have been completed, tasks that were not met, and tasks that are past due. With automated email reminders, your users will always be notiﬁed ahead of time so that any gaps in compliance can be dealt with immediately.
Enable Users to Get the Job Done
CM was designed with simplicity in mind. The more processes you can automate, the more time you save. CM enables you to assign responsibility for controls to the users who are responsible for maintaining those controls. You can also assign an approving manager to ensure that the documentation the user is providing is acceptable for audit evidence. This leaves no question as to which employee is responsible for maintaining compliance related to each control and provides accountability over the quality of the documentation being provided.
Available Compliance Requirements Templates
The following are a list of the currently available pre-build compliance requirements templates oﬀered for CM. If a regulation you need is not listed below you can build your own using our custom templates feature.
• ISO 27001
• NIST SP800-53
• NIST Cyber Security Framework
• FFIEC Cybersecurity Assessment Tool
• SANS Top 20 Critical Security Controls
• COSO Fundamentals
• ACCSC Accreditation