Cyber Security

  • 12 Actionable Cyber Security Tips for FinTech companies

    Smaller picture of Dollar notes and whisky on a wooden table

    Some FinTechs have become so successful over the recent months that they are challenging some of the world’s oldest major banks and insurances in revenue and market cap. Where no FinTech can compete, however, is on a track record of trust that dates back centuries, as in the case of some banks. When your entire business model is dealing with intangible assets, the trust of your customers and counterparties remains the only true currency you have. Today’s cyber security capability is yesterday’s bank vault.

    Unfortunately, there are more than enough recent examples of digital companies, including prominent FinTechs such as Kreditech, being brought down by cyber security events, hacks or compliance failures. In light of seemingly overpowering, anonymous and omnipresent cyber criminals, a young FinTech organisation might despair. At second glance however, the majority of cyber attacks have not been complex. In most cases, the attacks were either through social engineering or exploiting very basic weaknesses or a combination of both.

  • Assessment Hints and Refactored Reactions

    Assessment Hints and Refactored Reactions

    Summary of Changes

    Assessments Hints

    1. Assessments Hints

    Assessment Managers can give hints for their Responders - per control, in all languages, can be inherited via templates.

    Risk history in Reports

    2. Risk history in Reports

    A Report now remembers when a risk was created from it and by whom - great for avoiding duplicates and improving collaboration.

    Refactored Reactions

    3. Refactored Reactions

    We completely overhauled the underlying tech of our Reactions - faster realtime updates and better scalability.

  • Cooler Risk Tags, Task notifications and more

    Assessment Hints and Refactored Reactions

    Summary of Changes

    Risk Tag Updates

    1. Risk Tag Updates

    Many updates and improvements for the handling for Risk Tags in the Alyne Risk Management.

    Controls by Standard

    2. Controls by Standard

    Control Sets and Assessments are now displayed either by Topic or by Standard/ Regulation.

    Task Notifications

    3. Task Notifications

    We introduce automatic reminders for due tasks - if you want.

  • Cyber Insurance Underwriting Use Case

    hand that writes something in a notebook

    Cyber Insurance is the fastest growing insurance product on the market today and Alyne has an amazing offering to scale the underwriting process. We created this use case video to demonstrate our value contribution.

  • CyberRisk New Alyne Partner in Australia

    Melbourne / Munich, 25th of January, 2018 - CyberRisk, one of Australia's leading information security, technology risk management and privacy consulting firms today announced that it has been approved as a reseller and partner of Alyne. CyberRisk has been assisting clients with managing their risk since it was established in 2015.

  • FinTecSystems leverages Alyne for PSD2 License

    FinTecSystems are leveraging Alyne’s Software as a Service to prepare for their license under the new Payment Service Directive (PSD2). FinTecSystems' Legal and Compliance team is taking advantage of the out of the box content to document and improve practices in key areas such as Operational Risk Management, Cyber Security Management, Business Continuity Management and Data Protection.

  • Funky upgrades to Risk Management

    different tools assembled

    Summary of Changes

    Segmente Risk Tags

    1. Segmented Risk Tags

    Alyne introduces segmented risk tags that allow enterprises fine-granular ways to categorise their risks, restrict access control and enable hierarchical risk reporting and governance.

    Risk Management upgrades

    2. Risk Management upgrades

    Risk trends, risk heatmaps and risk exports are truly a cool bunch of new features in our current pro offering.

    Tech check

    3. Tech Check

    At the login page a tech check brings technical issues to your attention that need to be resolved for the best Alyne experience.

  • How to succeed as a new CISO – Part 2

    life as a ciso with arrows pointing up

    A couple of months ago, I gave you an overview of some origin stories that might influence your experience and personal development. Now it is time for part 2 of the article series that will give you some battle-tested tips and different time frames (e.g. what questions to ask before accepting the new job, how to prepare before starting your new job, how to survive your first week/month/100 days/year and how to build a strategic plan for the next 3 years.)

  • How to succeed as a new CISO — Part 1

    Multiple arrows pointing in the upward direction on a blue background

    Congratulations! You have a new job as something like CISO (Chief Information Security Officer), CSO (Chief Security Officer), Head of Information Security or similar. This can be a great gig or it can be your worst nightmare (sometimes more or less at the same time).

    I’ve been there and I have the scars and credentials to prove it. So, let me give you some tips for your first days.

  • Library Update

    27 Control Statements of the Alyne Library have just been updated to meet best practices through modifying the maturity target levels 3, 4 and 5.

  • Library Update: BAIT

    The Alyne library has just been updated with new content to meet the requirements published by the German Financial Regulator BaFin for governing IT in regulated banks known as BAIT

  • Library Update: Essential 8

    The Alyne library has just been updated with new content to meet the Essential Eight requirements published by the Australian Signals Directorate

  • Library Update: OWASP TOP 10

    The Alyne library has just been updated with new content to cover the OWASP Top 10 2013

  • Library Update: PSD2

    The Alyne library has just been updated with new content to help banks and FinTechs meet the requirements ofon the Security Measures for Operational and Security Risks of Payment Services as stated in Article 95 (3) of Directive (EU) 2015/2366 on payment services in the European Union (PSD2).

  • Library Update: VAIT

    The Alyne library has just been updated with new content to meet the requirements published by the German Financial Regulator BaFin for governing IT in regulated insurance companies, known as VAIT.

  • Make Assessments flexible again!

    different tools assembled

    Summary of Changes

    editing assessments

    1. Add Assessment Recipients

    For running or even closed Assessments you can add new recipients and Assessment Objects.

    Controls from scratch

    2. Controls from scratch

    If you want to cover Controls outside of our Cyber Security, Data Privacy and IT Risk space, you can now create Controls from scratch using our well known Controls editor.

    Euro, pound and dollar - displayed currencies symbol

    3. Currencies

    Alyne now supports 3 currencies: Euro, British Pound and Dollar - whatever Dollar.

  • Mitigation Task View, Control Set PDFs and super-fast Risk Graphs

    Mitigation Task View

    Summary of Changes

    Mitigation Task View

    1. Mitigation Task View

    The Risk Management comes with a different view: Mitigation Tasks

    Control Set PDFs

    2. Control Set PDFs

    Control Sets can now be exported to nicely formatted PDF.

    Risk Graph

    3. Dagger

    All Risk Graph-related activities in the app are now 50 times faster.

  • Multi Factor Authentication and Funnel Updates

    different tools assembled

    Summary of Changes

    Multi Factor Authentication

    1. Multi Factor Authentication

    A second factor for authentication protects your Alyne organisation from a wide range of attacks.

    High Score Evaluation for Funnels

    2. High Score Evaluation for Funnels

    We added a second evaluation method for Funnels: High Score. It's a brother to the existing Weighted Answers method.

    Scatter Plot for Funnel Runs

    3. Scatter Plot for Funnel Runs

    We introduce a very cool visualisation of the Funnel runs you took.

  • New cool Report features and Radars for Responders

    different tools assembled

    Summary of Changes

    Risk Heatmap and Compliance Summary

    1. Report Updates

    We revamped the most popular Report sections: Risk Heatmap and Compliance Summary.

    Implement Control

    2. Implement control mitigation

    We introduce a new mitigation action type: "Implement Control".

    Responder Radar

    3. Responder Radar

    Assessment recipients can view their results in a private radar diagram (if you allow it).

  • Post "Rogue One" Incident Security Audit Report

    three stormtroopers standing in a row

    Disclaimer: This report contains highly classified information pertaining to Imperial security. To be distributed only to personnel with security clearance for the "Rogue One" incident.

  • Real-time, baby! But in control.

    different tools assembled

    Summary of Changes

    Lightning symbol on green background

    1. Real-time

    Alyne real-time technology updates the screen within a second or less whenever you collaborate with colleagues.

    cryptography access control

    2. Access Control

    Read and write access rights on Control Sets, Assessments, Controls and Reports enable fine-grained access control policies in your organisation.

    Risk Archive

    3. Risk Archive

    Risk Management now supports archiving of Risks and even Risk Tags.

  • Realtime notifications

    different tools assembled

    Summary of Changes

    Realtime notifications

    1. Realtime Notifications

    You are now informed in realtime about events in your Assessments.

    Assessment activity feeds

    2. Activity Streams

    Each Assessment shows chronological list of its activities which is updated in realtime.

    New User Menu

    3. New User Menu

    We ship a new user menu that gives the all the current options and the notifications a new home.

  • Risk Management to the rescue

    different tools assembled

    Summary of Changes

    Secure File Evidence - risk exposure

    1. Risk Management

    Risk Management is our new module that makes the Alyne platform ready for a full-blown GRC journey.

    Task Management

    2. Task Manangement

    Alyne's Risk Management module is tightly coupled with the new Task Management that is the new general vehicle for managing action plans and task delegation.

    Green paperclip on white background

    3. Secure Files everywhere

    We took our top notch Secure Evidence technology for Assessments and make it available to all the other features at Alyne.

  • Risk Tags 2.0 and PDF Reports

    different tools assembled

    Summary of Changes

    Risk Tags 2.0

    1. Risk Tags 2.0

    We made the handling of Risk Tags in the Risk Management more powerful and easier to use at the same time.

    PDF Risk Reports

    2. PDF Reports

    Our reports are now also available as a downloadable PDF.

    Scoped Risk Reports

    3. Scoped Reports

    Reports can be limited to a selection of Controls now.

  • Single sign on, more speed and power features

    different tools assembled

    Summary of Changes

    Single Sign On

    1. Single Sign On

    Alyne now supports enterprise single sign on and authentication via Active Directory, Google G-Suite, Office 365 and others.

    Controls from scratch

    2. Speed

    We tuned our web interface and give you the fastest Alyne user experience ever.

    Archive Assessments

    3. Power User Features

    For our power users, we hide our templates initially and allow creating from templates as well as archiving of Assessments with one click.

  • Standards Radar for Responders and Realtime Access Control

    Standards Radar for Responders and Realtime Access Control

    Summary of Changes

    Sorted Radar Diagram

    1.... and again improved Radars

    Responder Radars now feature the standards radar. All Radars are sorted alphabetically now.

    Realtime Access Control

    2. Realtime Access Control

    Removing a user or changing the user type is enforced in realtime.

    Configurable Session Timeout

    3. Configurable Session Timeout

    Admins of an Alyne org can configure the inactivity timeout individually.

  • Standards Radar, nicer Funnel statistics and AI translations

    different tools assembled

    Summary of Changes

    Deviation Radar on Standards

    1. Deviation Radar on Standards

    Reports now feature a second Deviation Radar. This time it is grouped by Standards.

    Better Funnel Statistics

    2. Better Funnel Statistics

    Viewing Funnel instances now got nicer by slimmer statistics and questions and outcomes popups.

    AI Translations

    3. AI translations on Comments

    As a free and optional feature, you now can have comments translated into your language.

  • Task Notifications, Funnel Pie Charts and More

    Assessment Hints and Refactored Reactions

    Summary of Changes

    1. Reactions for Control Sets

    Alyne users can now add reactions to Control Sets (in addition to individual Controls), allowing customers to engage with members of their organisation more effectively.

    2. Task Notifications & CSVs

    Alyne users are now notified when Tasks are delegated or completed, giving customers better oversight over their organisation, including the organisation's risk management activities. Also, Risk Mitigation Tasks may now be downloaded as a CSV file.

    3. Funnel Pie Charts

    Funnel outcomes can now be presented in a pie chart, allowing users to get a quick visual snapshot of outcomes for active Funnels.

  • Victorian Government Leveraging Alyne to Manage Cyber Risk

    The Victorian Government (Australia) is using Alyne to help manage its cyber security and risk management, including monitoring its compliance with the Australian Government's Information Security Manual (ISM).

  • We are hiring a Risk and Compliance Expert

    risk expert banner

    Join our team as a Risk and Compliance Expert to design new features and enhance our Software as a Service and support our customers in being successful with Alyne.

    Your Role

    You will engage both with our customers and our technology team to identify functional needs, interpret these into software functionality and coordinate with the CTO team to develop or enhance the capability in our Software as a Service. Your understanding of risk and compliance processes will guide you in this task. Additionally, you will support in understanding regulatory changes and curating and adapting our content library to remain at the cutting edge. You will quickly become an expert in Alyne and will be a key resource in helping new organisations implement Alyne in their risk and assurance processes. Your portfolio will include tasks reporting to the CEO as well as our Chief Customer Officer in a full time capacity.

    Your Profile

    You have 3 - 5 years of experience in professional services or industry working with risk and compliance processes. You have a sound understanding of operational risk management practices and an affinity for technology. You approach new challenges with an open mind, creativity and curiosity and can self-sufficiently find solutions for partially defined tasks. Your English language skills are excellent, strong proficiency in a further language can be an asset.

    What we offer

    We are a highly motivated, agile and professional team and have built a well funded and rapidly growing business based on more than 10 years of experience in the industry. You have the opportunity to help design and enhance one of the leading RegTech products on the market. We want this role to be the next step in your career - offering you responsibility and the space to progress to an executive role in the company.

    About Alyne

    Alyne delivers a Software as a Service for Risk Management and Compliance. We make gaining risk insights as easy as browsing social media - through a next generation GRC solution. Since our launch in summer 2015, the four founders have built the company to a recognised leader in the RegTech industry. Large banks, insurance and manufacturing companies as well as FinTechs rely on our powerful risk analytics, extensive content libraries and easy usability for operational risk, cyber security, privacy or vendor governance processes. The company is funded through our customer base as well as prominent institutional, corporate and private investors and is an alumni of the highly competitive Barclays Techstars London program. Alyne has offices in Munich and London.

    Start Date

    Now

    Location

    Munich or London

    Please send your CV with a letter of motivation to Karl Viertel,[email protected]. We look forward to your application.

  • We are hiring a Sales Director

    sales director banner

    Join our team as a Sales Director to drive business development, sales and customer success of our Software as a Service GRC solution across Europe.

    Your Role

    You will be responsible for driving sales of a next generation Governance, Risk and Compliance solution to medium and large businesses as a full time position. You will shape the sales organisation as it grows, apply your experience in enterprise sales to build a high performing, international sales team and develop a sales pipeline from lead to closing. Within the next 12 months you will onboard a team of supporting sales staff and start expanding to geographies beyond Europe. Each Sales Director reports to the CEO.

    Your Profile

    You have a proven track record of building a sales organisation and selling GRC solutions or related products to senior corporate stakeholders. Your network extends internationally and you are highly motivated to build a best of class sales organisation for a fast paced and dynamic young company. You have excellent proficiency of English and ideally good language skills relevant to the markets in your network.

    What we offer

    We are a highly motivated, agile and professional team and have built a well funded and rapidly growing business based on more than 10 years of experience in the industry. We want you to accelerate our growth and share in our success. You will benefit from a compensation package without caps. In addition to your base salary, you will be rewarded for your current sales, your team’s sales and recurring contracts through a variable bonus component. As an early joiner of Alyne, your earning potential is as large and successful as you can grow your sales team.

    About Alyne

    Alyne delivers a Software as a Service for Risk Management and Compliance. We make gaining risk insights as easy as browsing social media - through a next generation GRC solution. Since our launch in summer 2015, the four founders have built the company to a recognised leader in the RegTech industry. Large banks, insurance and manufacturing companies as well as FinTechs rely on our powerful risk analytics, extensive content libraries and easy usability for operational risk, cyber security, privacy or vendor governance processes. The company is funded through our customer base as well as prominent institutional, corporate and private investors and is an alumni of the highly competitive Barclays Techstars London program. Alyne has offices in Munich and London.

    Start Date

    Now

    Location

    Munich or London

    Please send your CV with a letter of motivation to Karl Viertel,[email protected]. We look forward to your application.

  • We are hiring an Operations & Organisation Manager

    ops manager banner

    Join our team as an Operations & Organisation Manager to support our rapid growth, keep our business efficient and be an ambassador of our team’s culture as we continuously onboard more people.

    Your Role

    You will be responsible for a wide range of tasks and adapt to new challenges as the size and complexity of our team increases. Your day to day tasks will include the formalisation of business processes, direct support of our executives as they engage with globally leading businesses and our investors as well as the onboarding and coordination of new team members. You will work closely with Alyne’s founders and learn our culture and values so that you can reinforce them throughout our team.

    Your Profile

    You have strong organisational skills and have gained at least 2 - 3 years of professional experience in relevant areas. You have an affinity for technology and can operate proficiently in a corporate environment. You approach new challenges with an open mind, creativity and curiosity and can self-sufficiently find solutions for poorly defined challenges. Your English language skills are excellent.

    What we offer

    We are a highly motivated, agile and professional team and have built a well funded and rapidly growing business based on more than 10 years of experience in the industry. We want you to help shape Alyne. You will have the opportunity to work closely with founders and executives of the company and take on responsibility. In a growing organisation your portfolio of tasks will be shaped only by your motivation and ability.

    About Alyne

    Alyne delivers a Software as a Service for Risk Management and Compliance. We make gaining risk insights as easy as browsing social media - through a next generation GRC solution. Since our launch in summer 2015, the four founders have built the company to a recognised leader in the RegTech industry. Large banks, insurance and manufacturing companies as well as FinTechs rely on our powerful risk analytics, extensive content libraries and easy usability for operational risk, cyber security, privacy or vendor governance processes. The company is funded through our customer base as well as prominent institutional, corporate and private investors and is an alumni of the highly competitive Barclays Techstars London program. Alyne has offices in Munich and London.

    Start Date

    Now

    Location

    Munich

    Please send your CV with a letter of motivation to Karl Viertel,[email protected]. We look forward to your application.