Overview
The purpose of application assessment is to proactively identify and mitigate potential risks to the security, integrity, and availability of applications, thereby protecting your organization from financial losses, reputational damage, and legal liabilities associated with security breaches or operational failures. These applications may represent hardware and/or software systems running third-party software, custom products developed in-house, or any combination thereof.
Application assessment is one of the three assessment methodologies supported by Isora GRC. With application assessment, a single survey is created to allow you to answer questions about a specific system or application (already stored as an application object in Isora GRC’s inventory) as well as to update metadata for (ie, “enrich”) the application.
How to Assess an Application
This information is for superusers and assessment managers. Before you can assess an application, the application must already exist in Isora GRC’s inventory. As a superuser, you can add a new application from the Inventory page or from the Add Application button at the beginning of the New Application Assessment Wizard. As an assessment manager of the unit that owns an existing application, you can create a new assessment for that application.
...