Has anyone used an automated security questionnaire tool that also utilizes a nice trust center? It would be great to hear your reviews of the tool.

Vendor/Product Recommendation Peer Insights

588 views2 Comments

Sort by:

VP of IT10 months ago

I am not quite sure what you mean by "nice trust center", but we use a tool from Maclear (www.maclearglobal.com) which allows us to create security questionnaires that have a mapping to controls (in this case NIST CSF) and based on answers automatically scores the questions from a risk perspective. Hopefully that gives you some context.

CIO in Banking10 months ago

Its a slightly difficult question to answer without knowing the context and focus of the questionnaire. For example the questions I would as part of a selection process would be:

- Is this for internal use
- Will it require collaboration with external parties
- With regard to the trust centre element - what are the data considerations
- What is the reporting elements around the questionnaire
- Is there anything in the Organisation currently that can be utilised or is procurement the option

Typically on automated tool will save considerable time in gathering and analysing returns allowing organisations and people to focus on the added value items of developing plans from the output.

I have used Bitsight and OneTrust previously which have proved to be useful. However suggest mapping out the reqiurements and evaluate the options available to you

Content you might like

Are CISA's current recommendations for preventing Maui ransomware attacks sufficient?

Yes, if followed correctly.39%

Unsure38%

No, there is still a significant risk.19%

Other (please tell us in the comments)3%

View Results

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

Yes65%

No35%

If you could change one thing about how your organization initially implemented its hybrid work structure, what would it be?

Which vendor solutions are being considered to "read, identify and redact information" in unstructured data sets? I'm specifically looking at solutions that can mask / redact or hide content within documents, that allow documents to be consumed but certain piece of information to be hidden.

What framework and approach have you used in the past to manage information barriers, when one of your businesses was decoupled and split into two? As such, the new entity is required to split their application/infrastructure to mitigate conflict of interest.

Has anyone used an automated security questionnaire tool that also utilizes a nice trust center? It would be great to hear your reviews of the tool.

Sort by:

Content you might like

Are CISA's current recommendations for preventing Maui ransomware attacks sufficient?

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

If you could change one thing about how your organization initially implemented its hybrid work structure, what would it be?

Which vendor solutions are being considered to "read, identify and redact information" in unstructured data sets? I'm specifically looking at solutions that can mask / redact or hide content within documents, that allow documents to be consumed but certain piece of information to be hidden.

What framework and approach have you used in the past to manage information barriers, when one of your businesses was decoupled and split into two? As such, the new entity is required to split their application/infrastructure to mitigate conflict of interest.

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

How to develop top customer journeys using VoC data

Preparing For Shifting Data Privacy Laws: Data Leader Perspective

Hyperautomation: Are You Automating Your Business?

The CIO and CEO Relationship: CIO Perspective

Take Your Insights On-the-Go