Skip to content

OWASP/www-project-it-grc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

620 Commits
grcbit_base
grcbit_base
 
 
grcbit_compliance
grcbit_compliance
 
 
grcbit_cvss
grcbit_cvss
 
 
grcbit_iso27001
grcbit_iso27001
 
 
grcbit_risk_management
grcbit_risk_management
 
 
grcbit_setgroups
grcbit_setgroups
 
 
hide_login_ophackdoo
hide_login_ophackdoo
 
 
many2many_tags_click_cr
many2many_tags_click_cr
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

GRC

With this module you can comply with ISO 27001:2022 and PCI requirements, also you can implement an Information Security Management System, execute IT Risk, control design activities and more.

Some functionalities in this module are:

  • The platform provide you with the 93 ISO controls already loaded, security attributues, security concepts, categories, so you basically need to complete the statement aplicability to show an Information Security Management System implemented in your organization.

  • image
  • image
  • image

  • You can get reports and charts about the Information Security Management System.

  • image
  • image

  • You can evaluate risks using CVSS (Common Vulnerability Score System) calculator integrated in the risk module.

  • image

  • You can evaluate risk factors and design the controls to mitigate risks.

  • image
  • image
  • image

  • PCI requirements are also loaded so you can show compliance to auditors, clients, regulators or stake holders.

  • image

  • You can not protect what you do not know, so in the GRC module you can register IT providers, IT components, IT systems, processess and critical data, so you can evaluate risk and desing controls over such components to protect you data.

  • image

  • Define the roles needed for your Information Security Management System.

  • And more.

You can also take a look at the enterprise version which integrates XDR, GRC, Zero Trust and GPT cybersecurity capabilities into a unified Software-as-a-Service (SaaS) platform https://github.com/grcbit/grc4ciso.

grc4ciso roles

R - Read, W - Write, C - Create, u - Unlink

Asset Management ISMS Risk Management Control Compliance Settings
GRC Admin RWCU RWCU RWCU RWCU RWCU RWCU
GRC Consultant RWCU RWCU RWCU RWCU RWCU RWCU
Asset Management RWCU R R R R R
ISMS R RWCU R R R R
Risk Management R R RWCU R R R
Control R R R RWCU R R
Compliance R R R R RWCU R
Guest R R R R R R

INSTALLATION

This module is based on Odoo 16 community version. So you need to setup an Odoo Server to install this addon.

pip packages required:

  • pip3 install cvss==2.6
  • pip3 install xw_utils==1.1.12

DEMO

Contact

About

OWASP Foundation Web Respository

Resources

Readme
Activity
Custom properties

Stars

18 stars

Watchers

4 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages