GRC Asset Management

GRC Assets include all the items of an organisation where information is created, processed, stored, transmitted or discarded. Mapping and managing assets are essential to prioritise investments and concentrate efforts on most critical assets that sustain organisational processes.

Flexeye's Asset Management solution, built on its Engine, automates the asset management process by providing asset inventory (of IT and non IT assets, like people, process and facilities), centralized repository and risk management. It enables you to gather and store evidence, manage the compliance with all standards you are subject to and can improve the organisation's external audit posture.

Flexeye's solution includes the following core functionality:

• GRC asset repository
• Automated general computer control (GCC) collection

GRC Asset Repository

Supports the definition of assets, grouping them according to the business processes that they support and classify them appropriately according to requirements for confidentiality, integrity and availability. The GRC asset repository is not meant to replace any enterprise asset repository, however the GRC management capability should have a local representation of in-scope assets for GRC.

Automated General Computer Control (GCC) Collection

Supports the ability to import or directly measure configuration settings, vulnerability, identity auditing information and other GCC control information. This information is then mapped into the asset repository. Flexeye has a range of 'Collectors' that allows it to schedule the collection of this information on a regular basis from a diverse range of systems including: Active Directory; XL spreadsheets; XML files; SIM or SEIM systems, ID & Access Management systems; configuration and change management systems and configuration auditing systems.