TrustRadius: an HG Insights company

KCM GRC Platform

Score7.3 out of 10

9 Reviews and Ratings

Get a Demo

What is KCM GRC Platform?

KnowBe4 headquartered in Clearwater offers their governance, risk, compliance platform, the KCM GRC Platform.

Categories & Use Cases

Media

View All Compliance Requirements: View all your compliance requirements with details, descriptions, status, scope, and controls for each requirement.
View All Compliance Tasks: The “My Dashboard” view narrows focus to tasks assigned to an individual end user, allowing your entire organization to work together towards compliance.
View by Scope and Scope Status Report: Scopes enable you to track multiple projects in one place simultaneously allowing you to provide granular user permissions across each project.
View Policy Campaign: See all campaign details and easily keep track of your policy campaign completion percentage and user acknowledgments.
View Risk Breakdown and Risk Categories: The Risk Dashboard gives you high-level details on your risk categories and risk score associated with these categories.
Easily Add Risks: The Risk Wizard makes it easy for you to create unique organizational risks or import risks from existing spreadsheets to your risk register.
Use Pre-built and Customizable Questionnaire Templates: Ensure standard and consistent vendor assessments with pre-built and customizable questionnaire templates. You have the ability to generate assessments in HTML or CSV, depending on your preferred workow.
Vendor Details: View all your vendor details in one place to assess and monitor compliance and risk requirements for all your third parties.
Vendor Login: Your vendors login to an intuitive portal to upload, import, and complete required questionnaires or to provide their evidence controls.
Controls Information and Controls Library: Assign responsibility to individual users, manage testing schedules setting specic dates, and track evidence and requirements in the Controls view.
KCM’s Evidence Repository is a central location of all the files and DocuLinks (URLs) created within your account. You have the option to upload evidence directly to KCM (AES256 encrypted) or to provide DocuLinks back to evidence you host on your intranet.
Dashboards – Global, by Scope, and User: The global dashboard shows all tasks across the entire organization allowing you to see at-a-glance how your entire organization is doing as you work towards getting compliant and staying compliant. This view can be limited by Scope as well. Each module within KCM has its own dashboard as well.
Role-Based Access Control: KCM leverages RBAC for user administration. Your users only get access to the information needed based on different role types. Users can have multiple roles, depending on the implemented modules. There are even auditor roles to provide to outside consultants to review evidence and controls.

1 / 13

Key Features

Learn about the best (and worst!) features KCM GRC Platform has to offer, as determined by TrustRadius' reviewers.
Based on 9 ratings of KCM GRC Platform's features
View all features

Top Performing Features

  • Common repository of GRC items

    A common repository linking all GRC elements such as policies, risks, regulations, etc.) to give a 360 degree view

    Category average: 7.6

  • Risk management

    Risk management capabilities including alert engine to warn of trending risk exposure and risk visualizations like heat maps, dashboards, etc.

    Category average: 7.5

  • GRC policy management

    Support for policy lifestyle changes including creation, approval, communication etc.

    Category average: 7.4

Areas for Improvement

Reviews

What users are saying about KCM GRC Platform.
View all reviews

KnowBe4 KCM GRC Platform: Close to the best with the best value.

Incentivized
Randy MunroeView profile
Information Security Analyst in Information Technology at Randall-Reilly (201-500 employees employees)

Pros

  • Mapping controls across different compliance frameworks. It saves you a ton of time and energy!
  • Performing risk assessments at the granularity that you prefer, splitting assessments across departments and teams if you wish.

Cons

  • Vendor management has a few kinks to work out. We want to be able to do internal questionnaires for vendors as a compliance checklist before we sign off on a contract. Nothing in the works yet, but there are a few workarounds.
  • The navigation between different tasks in scope is clunky, and it's easy to lose your place, and it forces you back to the main page of the scope to retrace your steps.

Return on Investment

  • Just having the capacity to do things the right way, and formally, has driven some of our compliance efforts.
  • Due to licensing limitations, we likely overspent on seats to the platform that we didn't need but also didn't want to miss out on.

Other Software Used

Elasticsearch, CrowdStrike Falcon Endpoint Protection, Acronis Files Connect, Veeam ONE

Related Products

Products similar to KCM GRC Platform that may also meet your needs.
All comparisons
LogicManager
CompareLearn more
LogicGate
CompareLearn more
Riskonnect IRM
CompareLearn more