Skip to main content

Modules

Note

The access reviews, policies, Risk, and Vendors modules are additional purchases in Hyperproof. If you’re interested in learning more about these modules, please contact the Account Management team at am@hyperproof.io.

Policies

In Hyperproof, you can incorporate your policies, standards, and process documents into your compliance operations, and manage the life cycle of these documents. Each policy record in Hyperproof represents the entire policy life cycle.

See Policies for more information.

Audits

Conducting your document request list (DRL) audit in Hyperproof eliminates the back and forth you’d normally have with your auditor and, more importantly, reduces the number of times your colleagues are asked for the same proof by different audit teams. Auditors can review all documents in Hyperproof and ask questions directly in the Activity Feed. If you’re working with an external auditor, you can add them to Hyperproof with limited permissions. It's up to you whether you add your auditor to your organization with an organizational role, or add them as an external auditor with limited permissions.

See Audits for more information.

Assessments

Assessments are performed for a number of reasons, including continuous improvement and audit preparation. Hyperproof supports both control and requirement assessments. These objects can be audited for attributes such as design, language, effectiveness, and reliability. When the controls and requirements in your organization are sufficient, internal DRL-based audits run much smoother because a bulk of the work is already done.

See Assessments for more information.

Access reviews

Access reviews allow you to set up and track periodic reviews of user access to key systems and sensitive information at your company. The results of these reviews can be used as proof for many compliance standards. The Access review module speeds up the process and reduces the time to completion by allowing you to do the following:

  • Import a company directory of users along with information about their jobs to help reviewers assess each person's access.

  • Import user access lists for multiple applications including role, permission levels, and last login.

  • Generate a matrix of user access per application with each user account matched to a person in the company directory.

  • Split the access review matrix into tasks assigned to reviewers.

  • Collate adjustments requested by the reviewers into tasks for each application owner.

  • Generate proof for an audit.

See Access reviews for more information.

Risk Register

The Risk Register is a user-friendly database with a visual dashboard that allows your team to identify, assess, and prioritize risks. A risk is any type of probable outcome—such as a pending regulation, a security breach, a lack of security personnel and/or tooling, or a shift in customer behavior—that hinders your organization’s ability to achieve its mission and key objectives, including but not limited to staying in compliance with regulatory regimes and contractual obligations.

See Risk Register for more information.

Vendors

The Vendors module allows you to manage all of your vendors, as well as create, manage, and send questionnaires to them directly in Hyperproof. It also allows you to automatically score a vendor’s risk level based on their responses to a questionnaire.

See Vendor Register overview for more information.

In this section: