SeCube GRC basic function | SeCube optional modules | ||||||
---|---|---|---|---|---|---|---|
USE CASE | Inventory (CMDB) |
Governance
GOV
BIA
|
RISK (ERM) |
Compliance (Audit) |
BCM (BCP&DRP) |
||
ISMS ISO27001 |
Process and resource records; Corporate operating model; Visual simulations; Protection measures; |
Inventory of assets | Task manager with email reminders; Document library; Records of security exceptions; Records of incidents; Multiply Inventory management; |
Business Impact Analysis; CIA classification; |
Information security risk analysis and management; ISO27005 compliance; |
Statement of applicability; Information security policy and other regulations; Internal audit and reports; |
Business continuity planning; IT recovery and continuity planning; Time objectives (RTO, RPO, MTPD); Preparation tasks management; Testing; |
BCM (ISO22301) | Operational modeling of processes and support resources | ||||||
IT DRP | Operational modeling of resources and IT systems | ||||||
BIA | Operational modeling of processes and support resources | ||||||
ERM - Enterprise Risk Management | Business areas, processes, resources | Business and operational risk analysis and management | |||||
QM ISO9001 | Enterprise processes | Enterprise risk management | Internal audit and remediation actions | ||||
GDPR | Data processing activities and personal data set register | Data Protection Impact Analysis (DPIA) | GDPR gap analysis | ||||
Internal audit & compliance | Organizational resources | Internal audit and remediation action |