360inControl

360inControl is a software-as-a-service (SaaS) platform developed by CISS - Comprehensive Information Security Switzerland GmbH. According to the vendor, it is designed to support corporate governance, risk management, and compliance (GRC) processes. The platform offers standard process templates and tools tailored to the specific needs of organizations, making it suitable for companies of various sizes. Professionals from diverse industries, including risk managers, compliance officers, information security officers, data protection officers, IT managers, audit and assurance professionals, and those in financial services, healthcare, manufacturing, retail, and technology, rely on 360inControl for their GRC activities.

Key Features

Risk Management: 360inControl provides a comprehensive risk management feature that includes predefined risk assessment templates and tools. Users can track and monitor risks, assign ownership, set risk tolerance levels, and implement controls to mitigate risks. The platform supports the implementation of risk management frameworks such as ISO27005, ISO31000, PCI DSS, COSO TSP Section 100 AICPA, and COBIT.

Compliance Management: The platform facilitates compliance management by offering integrated use cases and templates. It helps organizations determine their compliance status, define improvement measures, and develop strategies to implement compliance requirements. 360inControl covers various compliance frameworks and standards such as ISO9001, ISO 27001, ISOxxxxx, GDPR, and industry-specific regulations.

Information Security Management: 360inControl supports information security management by providing tools and templates to assess and enhance the organization's security posture. It covers various security areas, including access control, incident management, vulnerability management, and security awareness. The platform aligns with standards and frameworks such as ISO27001, PCI DSS, CSC, COSO TSP Section 100 AICPA, GDPR, and COBIT.

Business Continuity Management: The platform offers features to assess and manage business continuity and backup management. It helps organizations evaluate their current state in business continuity, define measures to be taken, and develop strategies for implementing business continuity and backup management. 360inControl covers requirements from ISO22301 and ISO27001 standards.

Change Management: 360inControl supports change management processes by assisting organizations in assessing their current state, defining improvement measures, and implementing change management strategies. It ensures that changes are approved and tested prior to implementation, conducts risk assessments, ensures traceability, and implements segregation of duties.

Configuration Management: 360inControl provides configuration management features to assess and improve the organization's configuration management practices. It aligns with ISO27001 and COBIT standards, helping organizations ensure the adequate protection of systems and organizations.

Project Management: The platform supports project management processes by enabling organizations to assess their current state, define improvement measures, and implement project management strategies. It evaluates if project management processes are functioning correctly and ensures projects are executed as expected.

Service Management: 360inControl offers service management features to assess and improve the organization's service management practices. It ensures the integration of cybersecurity requirements into individual services.

System Security Management: The platform includes system security management features to assess and enhance the organization's technical cybersecurity aspects. It verifies the implementation of individual security settings and security designs according to standards and best practices.