Cyber Threat and Cyber Risk continuous monitoring
Reports and assessment review/response/finding details can be quickly exported to either an .CSV or PDF report for your clients.
Once you have responded and submitted your assessment, upon review, the risk manager will send you a notification with any findings/issues that require further attention or risk mitigation.
Mapping Findings to the Risk Register and Risk Register to the Vendor to provide a Vendor Risk Score.
Notifications will alert users that they have an assessment to complete. Follow these simple steps to access the platform and complete the assessment. Note, email notifications come from C1Risk (support@c1risk.com) and respondents must be licensed to use the platform.
Assessments can be sent to internal or external (vendor) company affiliates. Learn how to send an assessment here.
This training covers the types of questions you can add to an assessment template, as well as the "parent-child" question structure available to you in the assessment template.
Vendors can be reviewed internally for their impact on the bussiness prior to sending assessment to the vendor for security review.
C1Risk has a library of templates that can be added to the platform at any time using our central repository, or you can create your own assessment template and we will upload it for you.
Your vendors may have one or more contacts that need to be associated with their records. All contact must be users on the platform in order to receive assessments, reports, and notifications from the C1Risk platform. Here’s how to add your vendor’s contact to C1Risk.
Vendors can be onboarding in bulk or as single records in the C1Risk platform. C1Risk will provide a template for bulk uploading. Vendor records may also be configured to manage vendor data based upon company requirements.
CMMC Certification is easy, affordable, and assured on the C1Risk platform. No need for expensive consultants and spreadsheets when you have all the tools and information you need on our best-in-class integrated risk management platform:
1. Complete your assessment with the 800-171A guidance supplement
2. Auto-score your response and create findings and risk mitigation plans
3. Create export your 'ready for submission report' and for SPRS
CMMC requires a NIST Self-Assessment be submitted to the Supplier Performance Risk System (SPRS - "Spurs"). This video demonstrates how managed service providers, or your own internal team, can easily conduct the Self-Assessment, including:
1. Sending the assessment to one or multiple entities
2. Respond with access to 800-171A implementation guidance
3. Auto-score the assessment based on the DoD scoring methodology
4. Auto-create findings
5. Export a ready for submission report
The value of your assets and their impact to the organization - actively or when compromised - is a critical factor in the development of your risk and compliance program. Asset value informs inherent risk on the C1Risk platform and can be tracked against a single or related assets. C1Risk provides multiple templates for impact analysis, ranging from simple scoring, CIA ratings, and specific business line impact, or you can configure your own. Learn how to do your asset impact analysis here.
Pre-configured assessment templates for vendor risk, security review, compliance review, asset impact analysis and more, are all available in the C1Risk platform. You can also provide your own custom assessments to the C1Risk platform. Here is a quick and easy guide to for creating and uploading your internal and external risk assessments.
Once an assessment has been completed, you can track and mitigate findings in the C1Risk platform and/or export a summary report of the assessment in Excel or PDF format with the click of one button.
All your risk assessments can be customized from a question and risk scoring perspective to ensure assessments meet your risk management policy requirements and risk classifications.
Why wade through spreadsheets scoring assessments, adding findings, and creating reports, when you can easily auto-create and manage findings and reporting in the system or "one-click" export reports into PDFs or Excel. Great for MSP, Consultants and TPRM Teams.
All C1Risk assessment templates can be configured to auto-create findings based upon responses. See how easy it is to score an assessment using the C1Risk platform.
All DIBs (Defense Industrial Base Sector) vendors must submit a NIST 800-171 Self-Assessment through SPRS (https://www.sprs.csd.disa.mil/) before December 31. C1Risk provides the Assessment and the report needed to submit to SPRS for quick, complete readiness as you begin your CMMC journey.
How to send an assessment on the C1Risk Platform