Collaboration

BluePrint Protect’s™ collaboration features allow for better task management and faster completion times by bringing platform users together in a shared worked space with a set of robust, easy to use tools. On-line, in-band-communication features and real time documentation tools allow users to work in parallel to efficiently complete their work.

On-line Communication

Centralized communication on the platform happens with a robust set of easy-to-use tools. For instance, online chat features are used when assessors and third-party responders need to collaborate to complete an assessment. This eliminates a multitude of back-and-forth emails clogging up everyone’s inboxes through a log of all conversations which are easily referenced and have context. Information and documents can be posted and uploaded to be accessed and shared as and when needed.

Real time collaboration

Another key feature informed by our security team is the ability to enter notes, findings and commentary directly into the assessment workspace (visible only to users with proper permissions). This real-time collaboration feature creates greater alignment between our customers and our services team. Assessment and report notes highlight, in real time, potential areas of concern or actual risks so they can be addressed or mitigated as quickly as possible without “falling through the cracks,” a refrain we hear too often. Keeping notes during the course of an assessment also accelerates the completion of a Report of Findings once the assessment is complete.

Task Management

User-specific work queues contain tasks that have been assigned either automatically based on workflow and rules or by a team member. This task management feature allows users to focus on specific tasks that are open and require attention through email and platform notifications. Any user whether a customer’s security team member, an Intraprise Health security SME, an organizational stakeholder (e.g. business or system owner) or external third-party has a work queue by which to manage their open tasks.

Dashboards

Clear and easy to understand dashboards are a central feature of Protect™ and are visible at various levels of the platform. Program-encompassing dashboards illustrate the performance of the security program in real-time. Risks are ranked by criticality and are clearly visible to the security team. Module-level dashboards show progress and performance of specific programs such as TPRM. There are also workflow dashboards which show the progress at milestone stages and by risk severity. Risks can be captured from external sources through various methods to correlate trends, aggregate risks, further enhance analysis capabilities and drive workflows such as remediation management.

Third-Party Portfolio Manager

BluePrint Protect’s™ Portfolio Manager integrates the NIST RMF 2.0 standards into an automated assessment workflow by identifying and evaluating all third-parties and their associated applications, services and hardware devices for potential impact to the organization ultimately creating a single source of truth for a client’s third-party security program.

Users can view a complete third-party assessment history, initiate new assessments, schedule future re-assessments, or add historical assessment data from internal and external sources. Portfolio Manager’s cloud-based functionality also captures supporting audits and or certifications such as HITRUST, HIPAA, ISO or SOC2 which can be shared and leveraged across the entire Protect™ client base.

Analyzing whether the application or service contains covered or other sensitive information critical to the operation or the organization, users can then determine which third-party systems present the highest potential risk and require additional assessment, or should be scheduled for a re-assessment.