What is ZenComply?

ZenComply is the first Application in ZenGRC’s Cyber Risk Platform, purpose-built for you to have an easy way to leverage all of your GRC information by:

• Enabling your organization’s adherence to specific regulatory requirements through collecting information on controls

• Helping justify your organization’s security posture as it relates to the domains of a framework

• Evaluating the design and operational effectiveness of controls

• Documenting high-level observations & detailed findings.

Who will use ZenComply?

Here are the following types of ZenComply Roles users will be assigned:

• Program Manager

• Control Assessor

• Evidence Provider

• Organizational Administrator

ZenComply Engagement

Depending on your level of involvement within ZenComply, you can expect to be engaged in possibly one, or all, of the following activities:

1. Scoping - Program Setup

2. Planning - Audit Program

3. Execution - Control Assessments & Evidence Requests

4. Treatment - Findings

What am I viewing?

The types of engagement activities within ZenComply, who will be performing those activities, as well as a description and the expected time involvement.

Open