Home » GRC Platforms » Ostendio MyVCM

Ostendio MyVCM

Ostendio MyVCM
Free Trial
Ostendios MyVCM is a cloud-based cybersecurity and information management platform that delivers an easy to use, cost-effective way for companies to demonstrate information security compliance to multiple industry standards and regulations.
Homepage Linkedin

Languages supported: English

9.2/10 (Expert Score) ★★★★★
Product is rated as #19 in category GRC Platforms
Ease of use
Support
Ease of Setup
Leave a review ↓

Images

Check Software Images

Ostendio MyVCM™ is an integrated risk management platform that automates security program lifecycles. Organizations that deploy Ostendio MyVCM spend less time and less budget building, operating and demonstrating internally and externally the efficacy of their security programs. The platform provides a single solution that connects users and requirements from across the enterprise. Ostendio MyVCM helps companies: identify and quantify enterprise risk; quickly build and deploy security assessments; manage and respond to security incidents and breaches; and align vendors and suppliers to security and compliance standards.

Ostendio MyVCM
Ostendio MyVCM
Free Trial

Related Software
Added to wishlistRemoved from wishlist 0
Certa

Certa

Added to wishlistRemoved from wishlist 0
OneTrust

OneTrust

Related Categories
Show more categories

Customer Reviews

Ostendio MyVCM Reviews

Jim N.

Advanced user of Ostendio MyVCM
★★★★★
Solid, evolving product in an industry NEEDING automation.

What do you like best?

1) Flexible document storage with versioning for policies, procedures, etc. that need to be reviewed annually. Can be either stored on the platform itself or you can store a 'pointer' to the document (a URI) for on or off-prem repositories. Can also set document 'custodians' (editors) 'consumers' (users) and 'approvers' (managers) to faciliate the document lifecycle.

2) Sends you 'reminder' emails for documents needing their annual review. If the document hasn't changed, it's just a few clicks to endorse it for another year. If tiny changes are needed, you can do them within the platform via web editing. If major changes are needed, then download and upload. If you're just storing a pointer (see 1 above) then you just edit the document in it's repository and mark as complete in the MyVCM.

3) User tracking. Put all of your users in the system, assign them documents to review, and you're done. MyVCM emails each user when the document review is due, then tracks their review of the documents, which can include submitting an e-signature for high-compliance environments.

4) Assessments: When working with compliance vendors, you can collaborate directly with them in MyVCM, and point them to your polices, procedures and evidence within the platform. No more sending tons of emails with attachments and versioning by appending v39 to the filenames! Really streamlines the auditing process.

What do you dislike?

There is a learning curve. Figuring out how to set up documents vs. audits and setting the timeframe for audits takes some digging into. Do the training before you set up your initial environment to avoid rework. Keep tabs on users during initial rollout. Most users pick it up and are fine, but some that don't 'get it' will need initial help so as to avoid a negative impression of the platform.

What problems are you solving with the product? What benefits have you realized?

Compliance. Which means... policy and procedure tracking. User acknowledgement of policies and procedures, and external audits for a certification or report. Also storage of 'evidence'... reports on log reviews, user access reviews, inventory, etc.

Review source: G2.com

Leave a reply

Your total score

B2B Software Guide provides unbiased software reviews to help business owners choose the right software for their needs.

DMCA.com Protection Status
B2B Software Guide