Products

Learn more about STREAM - the comprehensive risk and
compliance management solution

Solutions

Learn about the different ways STREAM is used

Industries

Find out which industries benefit from using STREAM

Resources

Want to download a datasheet? Go to our resources page

Compliance Management

Compliance Management Software

Use STREAM as compliance management software to measure and monitor compliance against any control standard or sets of control standards. Benchmark your own business areas or third parties. Raise and track improvement actions through to completion. Record and track incidents and near-misses and use the lessons learnt to refine the compliance assessment.

Flexible control standards setup

Configure STREAM with any control standard, from public standards to your own control sets

Multiple control standards

Support multiple, linked control standards, e.g. ISO 27001 + BS 25999 + PCI + ISF SoGP
Link common controls to eliminate duplication of effort or link into your own organisation standards
Easily maintain control standards as changes are required
Include guidance for users to understand the requirements and issues relating to controls

Flexible control assessment schemes

Build control assessment schemes to match the needs of the organisation. Ranging from objective performance measures (such as ‘% users screened prior to being given access’) to sophisticated dialogs with assessment criteria with weighted drop-down options

Applicability and Dependency engine

Easily pre-define the default relationships between controls and types of asset (e.g. site, type of system, third party, team); STREAM then automatically makes controls applicable to your assets
Easily change the applicable / not applicable status for controls in relation to specific assets
Model dependency relationships between controls, or controls and effectiveness metrics, to understand the true status of controls which depend on the performance of other controls

Control Assessment

Record self-assessments by human users or automated updates from feeder applications, such as scanning / logging, data loss prevention systems
Assess controls using schemes / approaches of your choice

Key Compliance Indicators / Key Performance Indicators (KCIs / KPIs)

Specify and use KCIs / KPIs to indicate control performance and inform or modify self-assessments

Control Effectiveness Measurement

Measure and monitor the effectiveness of controls and understand the residual risks from weak control effectiveness

Improvement Planning

Specify, allocate and track improvement actions
Easily export action lists, and supporting data, into Microsoft Excel for post-processing and distribution

Management Reporting

View reports such as Control Deployment and Compliance Status, Control History, Applicable / Non-applicable Controls (e.g. a Statement of Applicability)
Define and export custom reports

Compliance with Management System Standards

Use STREAM as compliance management software to demonstrate compliance or certify to relevant management system standards, e.g. ISO 9000, ISO 14000, and ISO 27001

Register for email news

Latest

Information Security Europe 2010

Significant interest was expressed in the STREAM suite of products at Information Security 2010. It is clear that comprehensive risk and compliance management is becoming a key requirement for public and private organisations.
STREAM Seminar - Ljubljana May 2010

Richard Mayall presented a workshop in Ljubljana, Slovenia on 20 May 2010 on 'A better way to manage all your risks'. The workshop considered how STREAM can automate assurance management systems and support standards compliance.
Risk appetite for information security

Risk management best practice says that we need to manage risk in relation to risk appetite. But how do we do this for information security?

What are you looking for?

My role is