different tools assembled

Multi-tenancy and one-click functions for managing Assessments and Control Sets

Summary of Changes

Multi-tenancy - different switches in the software

1. Multi-tenancy

With the new Org Switcher you can switch fast and securely from one organisation to another via the org menu. Easy, secure and self-enabled multi-tenancy how you always wanted it to be.

One-click assessments in multi-tenancy

2. One-click actions on Assessments/ Control Sets

One click actions allow for copying Control Sets and Assessments, for creating Assessment templates and spin off Assessments from a Control Set right away.

One-click actions on Assessments/ Control Sets - internal audit tasks

3. Better Control tiles

The Control tile is the core element of our GRC product. You can now delete single Controls from a set, customisations have now more room to breath and tags are now better utilising the space available.

Weiterlesen ...
Paint roller covered in turquoise colour

8 neue Anforderungen für CIO und CISO aus der MaRisk-Novelle 2016

Vor wenigen Wochen, im Februar 2016, wurde ein Entwurf für die Novelle der Mindestanforderungen an das Risikomanagement (MaRisk) durch die Bundesanstalt für Finanzdienstleistungsaufsicht (BaFin) ausgegeben. Sollte der aktuelle Entwurf zur Konsultation so verabschiedet werden, würde dies sicherlich eines der größten regulatorischen Änderungen im deutschen Bankenwesen der letzten Jahre darstellen.

Wie bei jeder neuen regulatorischen Anforderung, müssen verantwortliche Personen in den jeweiligen Fachabteilungen analysieren, welche Bedeutung die neuen Anforderungen für ihre Verantwortungsbereiche haben und welche Maßnahmen zur Umsetzung notwendig sind.

Bei Alyne haben wir diesen Schritt schon einmal vorab für die Verantwortlichen von IT (CIO) und IT-Sicherheit (CISO) in Banken durchgeführt und haben 8 wesentliche Änderungen für diese Bereiche identifiziert.

Weiterlesen ...
different tools assembled

1000 Free Credits and Further Advancements in the New Release

Hi, my name is Manuel and I am the CTO of Alyne. In my first blog post, I will briefly cover the improvements of the new Alyne release for March, 2016. This will be - or so we hope - the start of a long, long series of release posts as we embrace the old-school guiding principle:

Release early. Release often. And listen to your customers.

Eric S. Raymond in The Cathedral and the Bazaar
Weiterlesen ...
Multiple arrows pointing in the upward direction on a blue background

How to succeed as a new CISO — Part 1

Congratulations! You have a new job as something like CISO (Chief Information Security Officer), CSO (Chief Security Officer), Head of Information Security or similar. This can be a great gig or it can be your worst nightmare (sometimes more or less at the same time).

I’ve been there and I have the scars and credentials to prove it. So, let me give you some tips for your first days.

Weiterlesen ...
Multi-coloured measuring tape

Doing Risk Assessments Right

Most organisations follow a sample based approach to identifying risk or gaining assurance for reasons of cost and practicality. Risk Assessments are already widely used and accepted as a method for risk identification and assurance and can be an extremely powerful and cost effective tool when done right and an utterly useless tool if done wrong. Consider the global practice of filing tax returns as a highly effective way of getting billions of people to declare their income and deductibles through a self assessment process. The previous Safe Harbor scheme, on the other hand, is an example of applying self assessments without any controls or meaningful oversight and using self assessments very poorly.

Weiterlesen ...