What is RskRgstr
Risk Register (RskRgstr) is web-based system created by Information Security professionals to record, score & report cybersecurity risk.
What problem we solve?
- Risk Management is a primary need for all private and public sector organizations to address increasing government and industry mandates.
- Fragmented Understanding of Risk – The knowledge of cybersecurity risk (project risk, third party risk, penetration testing, business impact analysis, and so on) is scattered inside an organization.
- Difficulty in Prioritization of risk management activities with lack of single risk view.
- Compliance Needs – Provides an evidence of a properly managed risk program.
- Expensive and Cumbersome systems or use of Spreadsheets to track risk.
How RskRgstr Solves Problems
- Minimalistic Approach – Designed by veteran risk management professionals, a minimalistic approach for risk management.
- Unified View of Risk – RskRgstr solves this by providing a unified way of documenting all risks in one place.
- Prioritization – RskRgstr associates priority and risk levels with findings and capability of searching/ reporting.
- Compliance Evidence – A defined approach to risk management with evidence of assessments and findings.
- Focus on Value Creation – An approach to minimize useless features and infrastructure needs and focus on creating value to reduce cost and training needs.
Availability
Available for installation within your network or Software as a Service (SaaS), as a training tool, and as a software package.
History
This project started in 2004 and was initially named as SMART (Security Management And Risk Tracking) and was developed in PHP. Later on it was renamed as RskRgstr and moved to Python/Django platform for more modular development.