Governance, Risk, and Compliance (GRC)

DG

Free

Governance, Risk, and Compliance (GRC)

DQM GRC View DQM GRC

DQM provides comprehensive data governance, e-privacy, and GDPR services to UK commercial organizations. Leveraging extensive experience since 1996 and recognized expertise through 9 industry awards, DQM guides businesses through increasingly complex privacy regulations, ensuring robust compliance and operational integrity. Their solutions empower organizations to proactively manage data privacy risks and achieve seamless adherence to global standards.

Data Governance Strategy and Implementation

GDPR Compliance Services

E-Privacy Regulation Adherence

D

Free

Governance, Risk, and Compliance (GRC)

Drawbridge View Drawbridge

Drawbridge offers a comprehensive cybersecurity GRC platform specifically designed for the alternative investment industry. Our proprietary technology empowers firms to centralize security programs, proactively manage cyber risks, and achieve robust compliance by integrating business, compliance, and IT functions into a single, efficient solution. Enhance your firm's security posture, reduce complexity and costs, and gain clear visibility into your risk landscape with our advanced analytics and vulnerability management capabilities.

Integrated Governance, Risk, and Compliance (GRC) Platform

Proprietary Cybersecurity Technology

Centralized Security Program Management

DS

Free

Governance, Risk, and Compliance (GRC)

Dynamic Standards International (DSI) View Dynamic Standards International (DSI)

Dynamic Standards International (DSI) is a global leader in developing adaptable 'dynamic standards' designed to keep pace with rapidly evolving industries. Our flagship initiative, SMB1001, is a multi-tiered cybersecurity certification precisely engineered to address the critical cybersecurity needs of small and medium-sized businesses, empowering them to effectively manage supply chain cyber risks. This industry-validated, ready-to-deploy solution guides organizations through a progressive journey from Bronze to Gold, establishing robust cybersecurity hygiene and demonstrating a commitment to high-level security practices.

Develops certifiable 'dynamic standards' for fast-evolving landscapes

Focuses on SMB cybersecurity uplift and supply chain risk management

Offers SMB1001: an industry-validated, ready-to-go cybersecurity solution

D

Free

Governance, Risk, and Compliance (GRC)

DynaRisk View DynaRisk

DynaRisk empowers organizations to proactively safeguard personnel, clients, and supply chains against evolving cyber threats by fostering individual empowerment and actionable insights. Our advanced platform integrates personal risk profiles with comprehensive external data and proprietary algorithms to accurately assess and articulate an individual's online risk exposure. Beyond mere risk quantification, DynaRisk provides personalized, step-by-step guidance to mitigate identified vulnerabilities, transforming your human capital into a robust line of defense against cybercrime.

Personalized cyber risk assessment based on individual factors.

Actionable, step-by-step guidance for risk mitigation.

Integration of personal risk with external threat intelligence.

E

Free

Governance, Risk, and Compliance (GRC)

Egerie View Egerie

Egerie is a comprehensive cyber risk management and data protection platform designed to provide organizations with a centralized, dynamic, and user-friendly solution. Leveraging advanced technology, an intelligent analysis engine, and extensive business and standards libraries, Egerie enables robust cyber risk mapping and governance, facilitating the development of a proactive cybersecurity strategy. Enhance your organization's security posture and compliance with Egerie's end-to-end risk management capabilities.

Global and centralized cyber risk mapping

Dynamic risk assessment and analysis engine

Comprehensive business and standards libraries

EC

Free

Governance, Risk, and Compliance (GRC)

Elemental Cyber Security View Elemental Cyber Security

Elemental Cyber Security revolutionizes enterprise security by providing a unified platform for seamless compliance automation and enforcement. The Elemental Security Platform (ESP) eliminates the complexity of fragmented security solutions, offering a comprehensive, enterprise-wide view of disparate controls. ESP empowers security and network professionals to effectively manage IT security and regulatory compliance, configuration management, access control, risk mitigation, and audit reporting.

Automated security compliance and enforcement

Unified enterprise-wide security visibility

Streamlined security configuration management

ES

Free

Governance, Risk, and Compliance (GRC)

Elpha Secure View Elpha Secure

Elpha Secure uniquely integrates advanced cybersecurity technology with comprehensive cyber insurance coverage. Our platform conducts automated security assessments to pinpoint vulnerabilities and proactively identify risks within your organization. Paired with competitively priced insurance policies up to $10 million from an A+ rated carrier, Elpha Secure offers a dual-layered defense, ensuring robust protection against the ever-evolving landscape of cyber threats.

Automated Cyber Risk Assessment Platform

Proactive Vulnerability Identification

Integrated Cyber Liability Insurance Quotes

EE

Free

Governance, Risk, and Compliance (GRC)

Enterprise Ethereum Alliance (EEA) View Enterprise Ethereum Alliance (EEA)

The Enterprise Ethereum Alliance (EEA) is a global standards organization dedicated to advancing enterprise-grade blockchain solutions. By fostering collaboration among technology pioneers, businesses, and startups, the EEA drives the development and adoption of interoperable private and public Ethereum-based enterprise systems. Their initiatives aim to create a more secure, scalable, and efficient blockchain ecosystem for businesses worldwide.

Global Standards Development

Enterprise Blockchain Interoperability

Collaboration Platform for Industry Leaders

E

Free

Governance, Risk, and Compliance (GRC)

Entreda View Entreda

Entreda, now part of Smarsh, provides a comprehensive platform designed to unify and automate the enforcement of cybersecurity and compliance policies across your entire digital infrastructure, including devices, users, networks, and applications. Leveraging NIST SP-800 guidelines, Entreda enables proactive cyber risk mitigation and detailed reporting, ensuring your information security architecture is robust, your critical data is protected, and business continuity is maintained through effective detection, response, and recovery strategies.

Unified policy enforcement across devices, users, networks, and applications

Proactive cyber risk mitigation

Automated compliance policy enforcement

E

Free

Governance, Risk, and Compliance (GRC)

ESProfiler View ESProfiler

ESProfiler is a leading Enterprise Security Profiler designed to provide CISOs with unparalleled clarity and confidence in their security programs. Our platform visually maps security capabilities, usage, and spend against critical threat priorities, enabling continuous validation of security investments. By fusing the security lifecycle with evolving threat landscapes, ESProfiler empowers organizations to break down silos, strategically prioritize threats, and maximize their return on security investments for a truly continuous security posture.

Visualise security capabilities, usage, and spend against threat priorities.

Continuously validate security investments against strategic goals.

Holistically fuse security lifecycle management with threat intelligence.

E

Free

Governance, Risk, and Compliance (GRC)

ESRA View ESRA

ai.esra was founded by leading cybersecurity experts, with the aim of changing the paradigm of cyber risk management. We want to make the risk analysis process automatic and data driven, leveraging a model based on AI. ESRA automatically creates a data-driven infrastructure model of your network, through a light set-up, using a probe for traffic monitoring and non-invasive agents for asset inventory discovery. The output is an accurate digital-twin that rebuilds all network communications between assets, encompassing IT, OT and IOT infrastructures. ESRA provides full visibility into risks, threats, and business impacts across your IT, OT, and IoT perimeter. Achieve continuous and detailed cyber risk assessment of your critical infrastructure to support strategic, data-informed decisions. ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

E

Free

Governance, Risk, and Compliance (GRC)

ExcelMindCyber View ExcelMindCyber

ExcelMindCyber is a premier training institute specializing in Governance, Risk, and Compliance (GRC) cybersecurity, dedicated to cultivating the next generation of industry leaders. We offer comprehensive, accessible training programs designed to bridge the cybersecurity skills gap, equipping individuals from all backgrounds with the practical expertise and foundational knowledge essential for success in this vital field. Our mission is to empower aspiring professionals, transforming them into competent GRC cybersecurity practitioners ready to contribute to a more secure digital future.

Specialized GRC Cybersecurity Training

Accessible Curriculum for All Backgrounds

Bridging the Cybersecurity Skills Gap

EC

Free

Governance, Risk, and Compliance (GRC)

Exertis Cybersecurity View Exertis Cybersecurity

Exertis Cybersecurity, a specialized division of Exertis Enterprise, leverages over 35 years of industry experience to deliver market-leading cybersecurity solutions. Serving more than 1,000 channel partners across the UK, Ireland, and Europe, we offer comprehensive services from scoping and delivery to expert management and education. Our accredited teams provide an unrivalled portfolio, including advanced solutions like Locklizard PDF DRM and ZenGRC for streamlined compliance, empowering businesses to confidently navigate today's complex threat landscape.

End-to-end cybersecurity lifecycle management

Extensive experience with over 35 years in the industry

Broad European channel partner network

E

Free

Governance, Risk, and Compliance (GRC)

Exiger View Exiger

Exiger offers a comprehensive suite of software and tech-enabled solutions designed to empower corporations, government agencies, and financial institutions in managing complex risks associated with third parties, supply chains, and customers. Our platform provides end-to-end visibility and holistic risk management, ensuring adherence to regulatory requirements and robust compliance.

End-to-end supply chain visibility

Holistic third-party risk management

Sanctions and adverse media screening

FS

Free

Governance, Risk, and Compliance (GRC)

Fable Security View Fable Security

Fable Security is revolutionizing human risk management by integrating advanced engineering, behavioral science, and AI to address the most complex security challenges. Our enterprise-grade platform provides unparalleled visibility into employee risk through comprehensive data synthesis, enabling proactive behavior shaping for enhanced security hygiene and compliance. We are dedicated to creating an elegant and intuitive user experience, ultimately aiming to eliminate the human attack surface and fortify your organization against evolving threats.

Comprehensive Human Risk Assessment

AI-Powered Behavioral Analysis

Proactive Behavior Shaping Modules

FI

Free

Governance, Risk, and Compliance (GRC)

FAIR Institute View FAIR Institute

The FAIR Institute is a leading non-profit professional organization committed to establishing and advancing the FAIR™ framework, the premier standard for measuring and managing information risk. By providing clear methodologies and best practices, FAIR empowers organizations to quantify cyber and operational risk in financial terms, enabling informed decision-making and effective communication of risk to business stakeholders. The Institute fosters a vibrant community focused on innovation, education, and knowledge sharing to elevate the practice of information risk management globally.

Industry-leading FAIR™ risk quantification framework

Standards and best practices for information risk management

Empowers business-centric risk reporting

FA

Free

Governance, Risk, and Compliance (GRC)

Fairly AI View Fairly AI

Fairly AI empowers organizations to democratize safe, secure, and compliant AI adoption. Our continuous monitoring platform integrates policy enforcement, rigorous testing, and comprehensive reporting to ensure enterprise AI models remain under robust control. Fairly AI provides advanced model governance and oversight, enabling risk and compliance, data science, and cybersecurity teams to collaborate seamlessly for the development of reliable and secure AI systems.

Continuous AI Monitoring Platform

Policy Enforcement for AI Models

Automated AI Model Testing

FS

Free

Governance, Risk, and Compliance (GRC)

Feroot Security View Feroot Security

Feroot Security is a comprehensive GRC platform designed specifically for B2B websites, empowering businesses to effortlessly achieve and sustain compliance with a vast array of critical regulations. Our cutting-edge technology automates the complexities of data privacy and security, ensuring adherence to standards like PCI DSS 4.0.1, CCPA, CIPA, HIPAA, and over 50 other global data privacy laws. Leverage Feroot to proactively manage risk, enhance your security posture, and build customer trust through demonstrable compliance.

Automated compliance with over 50 data privacy regulations

Dedicated PCI DSS 4.0.1 compliance tools

CCPA, CIPA, and HIPAA adherence

F

Free

Governance, Risk, and Compliance (GRC)

Findings View Findings

Findings (formerly IDRRA) is an AI-powered GRC platform designed to scale security compliance and vendor risk management across diverse sectors and regulatory frameworks. Automate third-party security assessments to expediently establish a robust supply chain risk program, ensuring streamlined security, data protection, and privacy compliance for your organization and partners. By eliminating manual processes, Findings significantly reduces labor-intensive costs and enhances operational efficiency.

AI-powered security assessment automation

Scalable third-party risk management

Streamlined compliance across sectors and regulations

F

Free

Governance, Risk, and Compliance (GRC)

Fingent View Fingent

Fingent is a global software solutions provider, specializing in developing high-quality, cutting-edge, secure, and user-friendly applications. Leveraging a disciplined project management methodology and a team of seasoned professionals, Fingent excels at rapidly resolving complex business challenges for clients worldwide. Our expertise spans critical areas such as network and infrastructure security, application security, and robust risk and compliance solutions, notably including the ZenGRC platform.

Strategic Software Development

Network & Infrastructure Security

Application Security Solutions

F

Free

Governance, Risk, and Compliance (GRC)

Finosec View Finosec

Finosec empowers financial institutions to transform their information and cybersecurity management. Our comprehensive platform automates critical, labor-intensive processes including access rights management, employee security training, and overall cyber hygiene, enabling robust defense against evolving threats. Finosec delivers clear, actionable insights through unique dashboards, allowing senior leadership and boards to effectively understand, quantify, and mitigate both cyber risks and regulatory scrutiny.

Automated Access Rights Management and Validation

Comprehensive Employee Information Security Training

Streamlined Information Security Program Governance

F

Free

Governance, Risk, and Compliance (GRC)

Flexera View Flexera

Flexera empowers organizations to revolutionize their software lifecycle, transforming how software is bought, sold, managed, and secured. By treating the software industry as a dynamic supply chain, Flexera delivers unparalleled transparency, security, and effectiveness. Their comprehensive suite of solutions, including Monetization, Security, Vulnerability Management, Software Asset Management (SAM), and DigitalStakeout, enables businesses to optimize revenue, mitigate open-source risks, reduce waste, and enhance their overall cybersecurity posture.

Software Monetization and Revenue Growth

Open Source Risk Mitigation

Software Asset Management (SAM)

F

Free

Governance, Risk, and Compliance (GRC)

Foresiet View Foresiet

Foresiet is the premier all-in-one Digital Risk Protection platform designed to comprehensively address an organization's digital threats. By consolidating diverse digital risk management capabilities, Foresiet empowers enterprises to proactively identify, assess, and mitigate cyber risks, ensuring business continuity and enabling leadership to concentrate on strategic growth initiatives. Our actionable intelligence and proactive security solutions deliver immediate improvements to security posture and measurable ROI.

Comprehensive Digital Risk Coverage

Actionable Threat Intelligence

Proactive Risk Mitigation

F

Free

Governance, Risk, and Compliance (GRC)

FortifyData View FortifyData

FortifyData is the next-generation cyber risk management platform, delivering continuous, comprehensive evaluation of third-party, internal, and people-related risks. By analyzing the core pillars of cybersecurity—people, process, and technology—FortifyData provides unparalleled holistic visibility into your organization's risk exposure, enabling proactive and informed security strategies.

Continuous third-party risk assessment

Internal cyber risk evaluation

People-centric risk analysis