MicrosoftHi Tina,
Thanks for sharing the update on progress for the IT compliance manager which seems to be a quick and easy to use :)
During the work we have done with compliance management in different organizations we have seen that it quickly gets complicated because of the scope beyond IT and system specific controls sets.
There are often more regulations and governance frameworks for industry and region specific legislation to manage including cross dependencies (as mentioned in some of the above comments 2018 will have a lot of regulation).
Other dimensions include policies and procedures and even downstream management of changes to systems, product requirements, data or processes that stem from regulation changes - not an easy undertaking!
I would be interested in hearing your thoughts in regards to how the compliance manager fits in with the wider compliance universe?
On the http://www.requirementone.com team we have put considerable effort in to solving the above headaches on our SaaS compliance platform (deployed in Azure). We have found that it is absolutely key to having an agnostic approach (template driven) that is easy to tweak and with easy integrations. Regarding integrations it would be interesting to understand if you would be able to deliver the updates you make to the Microsoft Controls for the different frameworks via for example Microsoft Flow? Otherwise it would be great to get a sample of how your email updates look like to evaluate what is possible to parse.
Thanks for making an effort to address the compliance headaches that so many organizations are facing!
Kind regards,
- martin
