Platform overview
Fully scalable and plug & play
Plan–Do–Check–Act task management
Central to all dashboards—such as those for ISMS, PIMS, AIMS, and others—is a complete overview of all Plan–Do–Check–Act tasks that are still to be performed, currently in progress, or overdue. Nothing is overlooked, and built-in control mechanisms allow tasks to be easily reassigned to another user.
Smart Integrated Risk Management, everything in one place
Integrated risk management system with risk dashboard, risk register, risk analyses, risk treatments, and trends.
- Integrated overview of all risks, from information security, cybersecurity, privacy, continuity, etc.
- Easily add risks from a central risk register with templates aligned to your sector.
- Extensive threats database (including MAPGOOD or RAVIB).
- Automated control proposals for risk treatment and integrated with the Statement of Applicability.
- Fully configurable in terms of workflows.
Simple compliance management
Easily link the relevant controls to your management systems and standards. From each management system, you can easily see the progress of the implementation of your process. You can also see the compliance status for each standard that is linked to your controls.
Continuous monitoring through an integrated audit and control system
Audit programs can be set up, scheduled, or made recurring quickly. Improvement actions can be easily assigned, and the reuse of evidence makes execution straightforward. This reduces the audit burden on involved employees and lowers your audit costs.
From the Internal Audit dashboard, internal audit planning can be visualized, including recurring audits, open and overdue tasks, and you can control these tasks from here, either integrally or per specific standard. Periodic controls can be configured easily.
Full control over all your incidents and data breaches
With the integrated incident and data breach management system, you can optimally handle the registration, timely processing, and reporting of incidents and data breaches.
Control over the supply chain
With the integrated Supplier Management system, you can map all your third-party suppliers, classify them, and periodically assess them using a supplier evaluation workflow. You can also track contracts and certificates for each supplier.
From the Pro subscription onwards, this also applies to fourth-party suppliers.
Integrated Risk Awareness
Risk awareness is crucial for the domains covered by our management systems. That is why an E-Learning Management System is included at no extra cost in all our subscriptions, and the system comes with a phishing simulation tool.
It includes templates so you can easily create your own programs. You can quickly develop your own e-learnings, upload videos, or create questionnaires.
For an additional fee, you can also add a ready-made E-Learning Security Pack to train employees in cybersecurity awareness.
The Risk Awareness Pack includes ready-to-use training courses aligned with ISO 27001, BIO, NEN7510, and NIS2. The pack contains training modules focused on the topics of People, Technology, Physical, Organizations, Privacy, Artificial Intelligence, and Management & Governance.
Plug & Play Compliance
More than 46 standards and frameworks available
A smart link between controls and standards ensures that the compliance status of a control is automatically applied to all linked standards, so you can immediately see compliance per standard.
The result: less duplicate work, maximum consistency. Achieving compliance with multiple standards at the same time has never been easier.
ITGC
AFM
CIScontrols
NIST CSF
NoreaPCF
ISAE3402
SOC2
C5
IEC62443
CSIR
BIACS
ISO 9001
ISO14001
ISO 41001
ISO 42001
ISO 22301
PCI/DSS
NTA-7516
ISO 15189
ISO 13485
RBNI
IMO Maritime Security
NIS2 Quality Marks
Discover which IRM360 Core and management systems best fit your organization
Start by choosing a Core subscription that suits your organization—Foundation, Advanced, or Pro—and then determine the level of control yourself by easily adding our plug-&-play management systems and standards—scalable up to a complete GRC solution.
Each subscription includes two management systems and two standards of your choice by default. This way, the solution grows with your objectives—without large upfront investments, without complex implementations, without starting over, and always delivering fast results.
Our CyberManager Core subscriptions
Foundation – Core functionality:
Includes:
-
Optimal task management (PDCA)
-
Risk management
-
Audit management
-
Incident management
-
Integrated risk awareness
-
Ready-made control templates
-
Audit-ready reports (including VVT)
-
Choice from over 46 standards
-
Maximum security
-
Language of your choice
-
Automated onboarding
Advanced – Core functionality:
Includes all Foundation core features, plus:
-
Single Sign-On integration
-
Integrated risk control
-
Functions/roles & groups
-
Role-based access
-
Linking of environments
-
Self-assessments
-
Sector-specific reports (including ENSIA)
-
Ability to add custom standards
-
Supplier evaluations
-
Additional custom fields
-
Multilingual
Pro – Core functionality:
Includes all Advanced core features, plus:
-
Integrated Governance dashboard
-
Integrated Risk Management
-
Key Risk Indicators (KRIs)
-
Domain & Line Risk insights
-
Domain & Line Governance insights
-
Suitable for e.g., DORA
-
Comprehensive threat overview
-
Third- & fourth-party register
-
Information register
-
Algorithm register
-
Master data menu integration
Enterprise – Core functionality:
Includes all Pro core features, plus:
- Enterprise GRC dashboard
-
Enterprise KRIs
-
Enterprise reporting
-
Process-oriented audits
-
Environment management
-
BI integrations
-
Centralized user management
-
Centralized control of controls
-
Centralized management of frameworks
-
Benchmarking