We are proud to partner with the folks at Clearity for managing risk and remediation for our clients. It’s a valuable tool for assessing an organizaton’s cybersecurity risks and working on a corrective action plan for long term remediation. This eliminates the use of spreadsheets. With a new version approaching in Q2 of 2024, adding and maintaining clients consists of yearly portfolios containing risk assessments, pentest findings, and incidents that can be documented. All 3 components of data compile into a master corrective action plan (CAP) that an organization can create tasks from, assign them to other members, and follow their progress until the item has been remediated, therefore increasing your score and lowering your risk.
Managing your business associates (BAs) cybersecurity risk
Clearity also shines this way by allowing our clients to manage their own BAs when it comes to accessing their cybersecurity risk. Clients can create their own BA accounts and send out invites to representatives from these organizations to answer a risk assessment on the platform, they can answer questions, add comments, attach documentation (documents, images, etc). When the assessment has been completed, these users can choose to continue to use Cogo to re-mediate their risk findings, adding new users to assign tasks to, all while our client watches their progress.
All of the essential assessment controls are included
Whatever your assessing needs are, Clearity usually has the controls needed to assess. Also with proper planning and preparation, customer assessments can be created and included into your regular selection of assessment controls. They include all of the following:
- NIST Cybersecurity Framework (CSF)
- NIST 800-53
- HIPAA Security
- HIPAA Vendor Security (Reduced control set for BAs/Vendors)
- Critical Security Controls (CSC v6)
- Custom Assessment Implementations also available. Clearity can import or create new control sets that match your needs.
Other Assessment (Control) modules include FERPA & PCI.
Manage Vendors
Maintain all of your vendors through Clearity for managing data such as SLA agreements and other service contracts. Get notified when they expire. Other information from contacts, addresses, and industry. If you feel they need to assess their risk, you can add them instantly as a BA account underneath your account and quickly send them a risk assessment and start the process.
Reporting
For those client meetings, we can print and show reports for giving the big picture for management on where they are in managing their risk including a cover page, summaries, and all other data from the dashboard.
Start a New Year
When the new year arrives, we create a fresh new portfolio for the year. That’s ok though. We can always restore old years to the dashboard for reviewing. We are just glad we got rid of our spreadsheets. If you are considering a new cybersecurity partner, you should give us a try. We can help you get rid of your spreadsheets as well.