GRC

Quality, safety, HR & environment management software for QHSE managers

AI-native GRC platform for compliance automation, risk mgmt & security reviews

Platform for NIST 800-171 and CMMC compliance management and documentation

GRC platform for compliance management, risk tracking, and policy management

Compliance mgmt platform for MSPs offering policy mgmt & risk assessments

Retraced is an audit logging solution that provides compliant, searchable audit trails for applications with client libraries for Go and JavaScript.

Watchmen is a framework that centralizes AWS Config rule lambda functions into a single account for streamlined compliance management and automation.

CustomProcessor is a policy management tool that enables users to create and manage custom policies for IETF policy frameworks through a user-friendly interface.

PacBot is a cloud security platform that provides continuous compliance monitoring, automated policy enforcement, and security reporting through policy-as-code implementation and multi-source data integration.

On-demand access to AWS and ISV compliance reports with time-saving benefits.

Continually audit your AWS usage to simplify risk and compliance assessment.

A collection of Ansible roles for hardening various systems and services

A standalone Python script that audits system configurations against CIS Hardening Benchmarks to assess compliance readiness without requiring installation or dependencies.

A Microsoft Word template library for implementing industrial information security management systems with documentation for policy, risk management, business continuity, and incident handling.

AI-powered data risk management platform for e-discovery, privacy & forensics

Gatekeeper is a policy management tool for Kubernetes that provides an extensible, parameterized policy library and native Kubernetes CRDs for instantiating and extending the policy library.

CSET is a free Windows-based tool that helps organizations identify cybersecurity vulnerabilities in enterprise and industrial control systems using hybrid risk and standards-based assessment approaches.

aws-allowlister automatically generates AWS Service Control Policies that restrict access to only compliance-framework-approved AWS services.

A comprehensive auditd configuration for Linux systems following best practices.

A community-driven GRC solution that is simple, affordable, and open-source.

A comprehensive IT infrastructure automation platform for managing hybrid infrastructure through configuration, patch, and security management.

Lockdown Enterprise is a subscription service for Ansible Lockdown to automate security benchmark compliance.