Manage risks and make sound decisions with simple, effective tools includes a dynamic and interactive set of tools that take you beyond the ineffective spreadsheet or costly stand alone applications to facilitate simple, consistent and effective risk working.


Manage information security risks with a Confidentiality, Integrity and Availability approach aligned with ISO 27001:2013, and also meeting the requirements of EU GDPR. Benefit from similar tools to manage applicable legislation and interested parties. All three tools come with proven, ISO 27001:2013 accredited methodologies and policies to adopt ‘straight-out-of-the-box’, plus content ‘banks’ to Adopt, Adapt or Add to, for significant time-savings.

Treat risks and show it

Easily evidence treatment of each risk where required linking to relevant policies & controls to keep the ISMS joined-up. If you’ve drawn down from our risk bank, we’ve even created those links to controls for you.

See your history and movement of risk over time to demonstrate the results of your treatment are working.

Save loads of time and hassle by working in one place with This means you can avoid inefficiency, cost and risk from buying multiple tools or trying to build your own solution when offers what you need for success at a price you can afford.


Add risks, analyse & evaluate impact

Follow our ISO 27001:2013 accredited methodology for managing risk, simply adopting the policy we have written to accompany the tool.

It’s easy to add risks from scratch or drawing down from our risk bank. We make it simple to analyse & evaluate each one for its impact on confidentiality, integrity and availability.

Assign risk owners for accountability and work as a team in one secure place in the cloud.

View updates quickly and set review dates with reminders to land in your email inbox, meaning you never forget an important risk.



Support decision making and investment activity

In, Risk, Applicable Legislation and Interested Parties data are all highly visible, in attractive and easy to read formats.

Information is exportable too if desired, although like most of our customers you may prefer to work online dynamically.

It’s in one secure online environment, always on to support fast, effective decision making and investment.


Manage Interested Parties

The Interested Parties element of is a requirement in 4.2 of the ISO 27001:2013 standard. We’ve made complying with that really easy for you, with a stakeholder management tool, as well as including the policy methodology for you to adopt. You’ll also get examples from a document bank, to draw down and evaluate as required. allows you to plot ‘power’ and ‘interest’ levels for Interested Parties, so you can quickly decide where best to invest your resources and what might just be noise.

Set reminder dates to ensure you review your Interested Parties for any changes that might impact your ISMS.

Discover more with your personal 'live' demonstration of

Continue the tour...


Learn how to drive continual improvement through Management reviews & audits, Governance, Monitoring objectives, Managing corrective actions, Undertaking improvements


ISMS Online Rating: 5 out of 5
Share This