Customizable Features and Functions within RM Studio
TNT and BÜROTEX Synargos have signed agreements with Stiki to use RM Studio
TomTom Development Germany has signed an agreement to use RM Studio
RM Studio is risk management software used by all types of organizations on a global scale. While RM Studio is an ideal solution for users looking to obtain ISO 27001, ISO 14001 and/or ISO 9001 certification, specifically for completing the required risk assessment, gap analysis, developing a risk treatment plan, and completing reports such as the Statement of Applicability, RM Studio’s functionalities go far beyond these standards.
RM Studio is an industry leading solution for risk assessments of all types; thanks to the customizations user can implement and deploy. These customization functions are simple to use and allow for users to address unique needs and ever-changing market demands. Areas you can customize include:
Evaluation Criteria
RM Studio comes equipped with evaluation criteria for assets and threats, developed by ISMS and QMS experts. Asset evaluation factors include confidentiality, integrity, availability and value. Threat evaluations include vulnerability, impact and probability. Users can modify and create their own evaluation criteria. This gives users flexibility in performing risk assessments. For example assets could be ranked based off their estimated return on investment (ROI).
Evaluation Values
The embedded evaluation criteria template has predefined values for asset and threat evaluation on a five point scale, ranking the criteria of the factor from low to immense. This can also be customized by users, allowing full scalability. An example would be the utilization of 3 point scale or 10 point scale, depending on the level of detail needed.
User Embedded Standards, Controls, and Guidelines
RM Studio users can purchase and deploy various international standards into the solution. Users can also define their own set of guidelines and implement them into the solution as well. For example, an information security consultant could implement an in-house standard and mitigating controls based on his own expertise
Asset Categories
Within RM Studio, asset categories provide the link between threats and assets. RM Studio comes equipped with an extensive asset category library. However if users have the need to create additional asset categories this can be done in a simple, systematic manner.
Threats
Similar to asset categories, RM Studio is equipped with a threat library consisting of 149 unique threats. Users can add to this library or remove non applicable threats.
By giving users the flexibility to create custom assessments based on unique organizational characteristics, RM Studio meets the dynamic needs of all types of users. Real world examples of this include:
- A financial institute implementing its own information security standards into the systems and performing multiple risk assessments for various business entities using customized evaluation criteria based on the organization’s benchmarks.
- A security consultancy firm implementing various security threats into the system that focus on physical security and performing assessments against said threats.
- An independent consultant has embedded an extensive threat library based of the threats presented in multiple assignments.
The possibilities within RM Studio are endless for your risk assessment and treatment needs. By giving users the ability to select standards to be embedded, adding new standards based on user needs, or allowing users to define their own standards, RM Studio is raising the bar for risk management software.
For further information regarding customization or other features of RM Studio, please contact us info@riskmanagementstudio.com.
