Rsam is a 7th generation Governance, Risk, and Compliance (GRC) management software built on an open and adaptable framework that quickly adapts to any customer's situation, process and environment. Rsam's Technology blends an intuitive multi-user interface with practical & best of breed risk assessment & compliance management methodology. Rsam can be used to record, assess & manage risks, vulnerabilities, controls and compliance with technical, physical, and administrative assets, as well as business functions, processes and more. The Rsam Framework is an open and adaptable technology platform. This highly configurable and modular framework provides organizations the flexibility to adapt Rsam quickly and easily to their own existing processes & requirements, or to utilize Rsam's existing out-of-the-box solutions. The framework seamlessly integrates all of Rsam's Solution modules providing organizations the flexibility to roll-out a risk management program in its entirety - or pursue a phased implementation. The Rsam Framework includes rich utility features such as such as Granular User Permissions, Integration with LDAP, Role-based Dashboards, Enhanced Reporting, Dynamic Work Flow, eMail Notification, Scheduler, Web Services API and a very powerful Import engine. The Rsam Framework also leverages the Rsam Risk Analytics module, which assists organizations in creating dynamic rules that maximize their ability to manage assessments and findings. The goal of Rsam Risk Analytics is to provide a high degree of automation in managing data and workflow. Organizations can utilize dynamic rules to specify their own unique handling requirements on-the-fly. Data Sheet Key Features Whitepapers

Risk & Compliance Assessments Leverage out-of-the-box pre-configured elements and automate assessments of Applications, Vendors, Physical location, Departments, Processes and more. Gather assessment data once; cross-reference, analyze and relate it to one or more areas of compliance, ISO, NIST, PCI, HIPAA, GLB, COBIT, FFIEC, SOX IT Controls and more Issue/Remediation Tracking Record, Track and Report on issues & associated remediation plans from questionnaires, onsite audits and vulnerability scanners Audit Automation Automate auditing processes by using Rsam for Self Assessments, Controls testing and Tracking of Audit Findings Policy Exception Management Record, Track & Manage Policy Exceptions and relate them to specific policies, standards & compliance mandates. Automate escalation, approvals and notifications Controls Testing Record, Track & Manage control test criteria & results. Prioritize tests based on criticality, randomizer and other custom criteria. Risk Inventory Import, record and keep your inventory up-to-date. Understand risk factors, interdependencies and prioritize risk management activities Build your own Leverage Rsam's highly configurable & extensible platform to create your custom risk & compliance solutions using simple administrative GUIs Incident Management Record, Track & Manage Incidents, Privacy Complaints and other events within a single framework. Gather evidence, automate escalation & associated approval processes Vulnerability Scanner Findings Import & track vulnerability data from existing scanners, and analyze & report on vulnerability data with reference to risk & compliance levels. Track remediation, automate escalation, approvals and notifications.

The Rsam platform and solutions can be licensed to an organization in its entirety or via individual modules. This flexible licensing schema provides organizations with a low-cost entry point to address high-priority areas first, with the confidence that they are investing in a platform that will grow to address future challenges and initiatives. For more information on this platform and how it is licensed, please contact Relational Security sales department at sales@rsam.com or call 1.800.920.Rsam