News
Credence Security to Address Growing Market for GRC Solutions in Middle East Through Partnership with Rsam
June 2017 by Marc Jacob
Credence Security, a subsidiary of Cognosec AB, and the region’s specialty distribution company, announced that it has signed a distribution agreement with Rsam, an enterprise software provider for risk and compliance solutions. As part of the agreement, Credence Security will be responsible for distribution of Rsam’s complete suite of solutions, with a particular focus on vendor risk management (VRM), security incident response and corporate risk and compliance assessments, across the Middle East and Africa. Credence will also be responsible for providing the professional services associated with deployments of these solutions.
Rsam Risk Assessment was designed to accommodate the spectrum of nuances, users, assets and situations in an automated way. Rsam enables organizations to identify the target of the assessment, calculate the criticality and risk, record vulnerabilities and controls, and come up with a risk score. Reports provide guidance to determine where the most effective controls could be put in place to achieve this goal. Beyond questionnaires, Rsam can also record assessment data derived from audits, on-site visits, interviews and discussions, or data from automated tools or feeds. This information is easily integrated with survey-based data to give a complete picture of the assessment target.
Rsam’s Vendor Risk Management (VRM) solution uses a unique relational-data model to centrally record and organize all risk management data for a 360-degree vendor view. Enterprises can identify the security and compliance controls and deficiencies for vendors with easy and keep a risk inventory of all vendors. The module also allows enterprises to broaden their assessment by integrating data from third-party sources.
Rsam’s Security Incident Response Platform (SIRP) simplifies and speeds monitoring and resolution. The dynamic workflow can replicate any existing incident management process and allows organizations to make changes as the processes evolve - all from a single interface.
