Skip to main content

Security Compliance

Overview

The Security Compliance Module is an essential component of our Software-as-a-Service (SaaS) CISO Workplace™, meticulously crafted to ensure organizational compliance with pertinent regulations, laws, and standards concerning data security. It facilitates the identification, evaluation, and management of information security risks while enforcing robust security measures to safeguard sensitive data.

Key Features:

  • Comprehensive Framework Adherence: Our module allows adherence to multiple security compliance frameworks such as ISO 27001, NIST, PCI DSS, and AICPA TSC 2017 (SOC 2), offering adaptability across diverse industries and regions, thereby streamlining efforts and reducing administrative overhead.
  • Compliance Status Tracking: Real-time tracking of compliance status and regulatory progress ensures transparency and accountability throughout the compliance journey.
  • Efficient Documentation: Users can efficiently collect, organize, and document evidence for compliance audits, simplifying the audit process and ensuring readiness.

User Manual

Navigating to Security Compliance Module

To navigate to the Security Compliance Module.

  • Go to Cyber Governance.
  • Then Click the Security Compliance.


Adding a Framework:
  • To add a new framework or standard, navigateclick totheAdd Framework” button.
  • After clicking the “Add Framework” button, you will be redirected into the "Manage Compliance”." tab.
  • Then

    Managecompliance.png

    click
      the
    • Click on “"Add New Framework”." button.

    Adding Framework.png 

    • In the search box, type the desired framework, e.g., ISO 27001 v2022, and click “View More”.

    iso.pngimage.png

    • Clickclick the "Add StandardStandard" to proceed.button

    addstandard.png


    • After adding the framework, set the Compliance Timeline, comprising four phases: Organizational Mapping, Gap Analysis, Remediation Plan, and Assessment. Adjust the start and end dates for each phase as needed. Click "Update" to save changes or select "MAYBE LATER" to add the timeline later.

    maybe later.png

    • The added framework will reflect in the Dashboard along with the Timeline.

    framedashbaord.png 

    • To view the entire compliance timeline, click the highlighted framework name on the right portion.

    timeline.png

    • Customize the view by setting it to day, week, or month, and toggle the "Show Task List" accordingly.

    day.png

    month.pngimage.png

    image.png

     

    Manage Framework:
    • Navigate to “Manage Compliance” and click “View Details”.

    manage.png


     

    • The framework dashboard will display.

                   * Click the icon next to the section number to reveal tasks.

                   * Assign tasks by selecting an assignee from the dropdown list.

                   * Update task status by selecting from the dropdown list.

                   * Audit Status column is updated by auditors only.

                   * The progress bar reflects the current status set in the “Status” column.

                   * Sub-sections and their details are displayed on the right side.


    Framedashboard.pngimage.png


    • To add attachments/evidence, return to “Manage Compliance”.

    Evidence.pngimage.png


    • ClickTo upload a document, clickUpload a Document, onlocated at the rightManage portion.Compliance tab.

    uploadcos.png

    • Select Files, choose the desired files, and click “Upload”.

    selctupload.pngimage.png

    • To add evidence for each sub-section, navigate to the “Attachments” tab and click “Add Evidence for this Sub-section”.

    selectfile.pngimage.png


    • Select the file as evidence and click “Select File”.

    Selectf.pngimage.png


    • The added evidence will be displayed.

    ev.pngimage.png


    • Preview uploaded files by clicking “VIEW FILEEyeandicon.
      • add
    comments
    as

     necessary.

    Dashboard Tab

    image.png

    • Implementation Maturity: In this section, you will find visual representations detailing the current implementation maturity or status of the framework that has been added.

    prev.pngimage.png

    Review

    For the reviewer, assign statuses to each sub-section:

    • UnknownProgress:The progress component gives a quick overview of how much progress has been made in implementing or complying with each framework.

    image.png

    • Milestone Events: This component is designed to assist in monitoring and managing important milestones related to various standards or frameworks. By displaying key due dates, it helps ensure that all necessary tasks and requirements are completed on time.

    image.png

    • Compliance Timeline:In this component, it provides a visual representation of the start and end dates for each compliance initiative.

    image.png

    • Task Progress:This component displays the progress of tasks, and consists of three tabs that allow you to filter tasks.
      • Ongoing Tasks: This tab shows tasks that are currently in progress.
      • NonexistentTasks at Risk: This tab displays tasks that are at risk of not being completed on time.
      • Initial
        • Future
      • Limited
        • Tasks:
      • Defined
        • This
      • Managed
        • tab
      • Optimized
        • lists
      • Nottasks applicablethat are scheduled to be started in the future.

    image.png

    Manage Compliance Tab

    In this tab you will see the frameworks that have been added.

    image.png

     


    Compliance Information Tab

    In this tab, you can select a framework that you wish to adhere to.

    image.png

    Task Management Tab

    The Task Management tab provides a comprehensive view of the compliance project, allowing users to track progress, and ensure that the project is on track to meet its objectives.

    image.png


    If you need further assistance, kindly contact our support at info@cytechint.com for prompt assistance and guidance.

    • Back to top