Redefine organisational opportunities and risk management.
Turn your strategy into reality.
Consistently deliver effective projects and portfolios.
Measure individual and collective performance.
Transform your manual meeting processes.
Digitise and streamline workflows and reporting.
Better and more confident reporting.
Deliver data to your stakeholders in style.
Seamless integration across your IT ecosystem.
We enable better businesses.
We work closely with a wide-ranging partner network.
Board of directors & Executive management
Read the latest news and insights from the Camms team.
Watch a variety of live and on-demand webinars
Delve into our long-read thought leadership content.
Visit Camms.College to view our upcoming customer events.
Do you have visibility of your Cyber risk at the right levels? Is your IT risk integrated with your existing enterprise risk framework? Camms.Risk ensures that cyber risk is given the visibility for all levels of an organisation.
Manage complex structures of compliance requirements for standards such as ISO 27001, NIST, HIPAA, PCI DSS, SOC 2 and GDPR
Identify and monitor IT risks, mitigating actions and controls
Manage cybersecurity incidents from the initial incident, through to detail investigation and closure
Even before the global pandemic, cyber risk management objectives were rising on the Boardroom priority list. An incident brings enormous regulatory fines that can drastically impact an organisation’s bottom line. Even if the business has deep enough pockets to sustain the financial impact, an incident also has the potential to cause irreversible damage to an organisation’s reputation and customer trust. Consequently, there is increased pressure on governance, risk and compliance professionals to demonstrate to executive teams why they must step-up and get a better handle on cybersecurity to remain competitive.
To do this well you will need a cloud-based integrated platform you can trust, in order to deliver the visibility needed to determine a robust risk posture for effective cyber risk management.
This on-demand webinar delves into how organisations can more effectively govern and oversee their cyber risks and in turn protect the interests of their stakeholders.
Watch our short overview video to find out how Camms offers a fully integrated solution to support organisations with their IT and cyber risk management.
Manage cyber risk in a systemised transparent way
Enables identification of varying types of cyber risks (segregated into configurable registers), risk and control assessment and remediation. Risks can be linked through to causal factors that building a library within the tool, creating the ability to create bow-tie analysis of an organisation’s cyber risks. Each risk can have established controls which integrate with external tools to report on the effectiveness. Risk treatments can be created and tracked against each risk, with completed treatments able to be converted to controls for ongoing monitoring. This compliments the initial and residual risk assessments that can be done with the system, with an optional forecast/target risks assessment as well.
Real-time visibility of risks and controls
Use of dashboards and reports to ensure that cyber risks are visible at all levels of your business. Executives, boards and business unit leaders to understand the complex world of cyber risk through clean and easy to understand interactive heat maps and dashboards, whilst enabling GRC professionals to layout their organisation’s risks in easy to use and track risk registers.
Manage controls inline with key information security frameworks, including ISO 27001 and NIST 800
Camms.Risk allows organisations to manage complex structures of compliance requirements, policies and authority documents, with our of the box configurations available for key legislation, frameworks and standards such as ISO27001 and EU GDPR. Compliance obligations (and sub-obligations) can be mapped to relevant policies and controls for traceability. Integrations with regulatory compliance and change management using Camms APIs, including LexisNexis and SAI Global provide crucial capabilities to received automated compliance obligation updates and flag potential non-compliances.
Cyber incident management
Incidents can be integrated with third-party monitoring and ticketing tools, to automatically create incidents based on events or tickets, and complete the investigation, root cause analysis and remediation action follow up via Camms.Risk. Linking incidents to risks enable analysis of potential controls that are failing, and links to compliance obligations can flag compliance failures and potential exposure.
Cyber audit management
Track recommendations and audit actions resulting from internal or external audits, with the ability to link back to risks and having audit actions linked to risk treatments where relevant. This provides complete end-to-end traceability and enables reporting to key stakeholders.
Adam Collins | December 15, 2020
We have reason to be celebrating again! We are proud and excited to announce that Camms.Risk, our industry-recognised risk management solution, was once again named as a “High Performer” in the GRC software category on G2’s Winter 2021 Grid Report.
Aaron Mullins | November 12, 2020
If you’ve been following the news in 2020, and let’s be fair, who hasn’t, you may have noticed – between the headlines of US election drama and burgeoning pandemic numbers – that cyber crime is well and truly on the rise.
From Australian Prime Minister, Scott Morrison’s alarming announcement in June, that a foreign government had been discovered undertaking “malicious” cyber attacks against Australian government agencies; to the numerous hacking scandals plaguing the 2020 US election race.
But it’s not just the largest organisations who are at risk of cyber attacks – many organisations and businesses moving to work-from-home arrangements earlier this year fell victim to opportunistic cyber criminals, making the most of easy access to remote IT systems.
In September, global IT and tech news site ZDNet, reported that there had been a “sharp rise in sophisticated hands-on hacking campaigns” in 2020, with the first half of the year showing more incidents than all of 2019.
The findings came from a report from cyber security company Crowdstrike, and were based on “potential hands-on intrusions” identified by their research team.
“The first half of 2020 saw 41,000 intrusions, a higher figure than the 35,000 detected during all of 2019, according to the company,” Danny Palmer, author of the ZDNet article reported.
“Hands-on campaigns are based around hackers gaining access to the network – often via leaked or stolen credentials to an employee account or an exposed RDP server – then using the legitimate access those accounts or systems offer to move across the network, gradually securing the means to gain more and more access.”
With integrated solutions in risk, strategy, projects and people, Camms business software will help you make the right decisions, manage risks, align the talents of your organisation, and focus on what matters.