Maiky automated most of the security controls which allowed us to focus the team on the more critical issues, working on the future readiness by eliminating 300+ Man Days of repetitive validations.
To be able to customize the GRC tool with a focus to report compliance activities to the management was crucial.
The shift to elevate your controls from "a presence" to "quantitative performance"(track, measure, report) and optimize policies/controls lifecycle is great.
I'm super happy to see that you guys are doing this. I've talked to dozens of GRC automation platforms and nobody is taking the approach to connecting to an API and defining what fields you want to set. It seems like such an easy idea that I'm glad you're executing on it so thank you.
I have looked at many GRC programs in the last 10 years, and what I'm missing are:
a) the possibility to manage many international regulation AND internal compliance
b) improving compliance management with automation.
I like that Maiky wants to make compliance management more efficient and effective.