Feature

GRC Tools Help Manage Regulations

Ezine

This article can also be found in the Premium Editorial Download "Information Security magazine: Five crucial virtualization do's and don'ts."

Download it now to read this article plus other related content.

Modulo's Strengths
Risk Manager allows enterprises to categorize themselves into one or more "organizations" that are represented by a tree view in the client. It auto-populates this view by importing information from a variety of sources, such as Active Directory, asset spreadsheets/ databases and manual entries.

Its real power lies in its ability to categorize every asset in the organization--processes, applications, technical components and facilities--associate a risk level to each, and keep track of the controls that are implemented on an asset-by-asset basis. The tool also facilitates keeping track of personnel associated with the assets and threats to it.

Risk information is collected using one or more questionnaires applicable to different assets, based on their categorization. For example, data centers can be assigned one or more data center-specific questionnaires to appropriate personnel. Risk Manager gathers information about all the assets in a particular scope and quantifies the associated risk, keeping track of controls' status on an asset-by-asset basis.

    Requires Free Membership to View

This was first published in June 2008

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: