About

STREAM Integrated Risk Manager is an award-winning GRC platform that allows organizations to centralize, automate, quantify and report on risk.  It can be used for a variety of applications including cyber / IT risk management, enterprise risk management, operational risk management, BCM and vendor risk management.
Centralise: STREAM brings together all of the data required to understand risk status in the context of threats to business outcomes.  Aggregation and correlation features allow users to make informed decisions on the need for action, complying with regulations and standards (e.g. GDPR, ISO 27001, PCI-DSS and NIST) whilst reducing the risk of breaches. In the event of a breach, STREAM provides evidence of a diligent risk-based approach to minimise the impact of fines, reputational damage and legal costs. Additional regulations and frameworks, such as those for specific industry sectors can be quickly and easily added into the same, single database.
Automate: STREAM can utilize control deployments to automatically update your risk assessments to give you a full and accurate view of your current exposure, both quantitatively and qualitatively. In addition, STREAM can automate workflow to assign actions, send out notifications and alerts to users to ensure they are kept up to date on areas that need their attention.
Quantify: Now with the ability to support the Open FAIR methodology, STREAM provides the automation for recording, aggregation and reporting of both qualitative and quantitative risk across the enterprise whilst linking the related factors. This analysis helps organisations to understand potential financial loss exposure from cyber breaches and appraise cyber security investments.
Report:  STREAM is a highly configurable solution which allows customization of different roles for user-specific dashboards and permission-based viewing. Information can be viewed via standard reports, user-configurable custom reports or through integration with BI tools.
Vulnerability scans, penetration test results and control metrics can be imported from external data sources (e.g. scanning and monitoring systems), used to update the business risk and compliance status and report on key performance indicators. ¬ Through the use of real-time dashboards and workflow functionality, vulnerabilities are alerted to appropriate technical teams to allow for efficient remediation.
STREAM has been around for over 10 years and is available as a SaaS or on-premise deployment. It has been adopted by organizations around the world, across various industries including finance, energy, healthcare, manufacturing, legal and IT.
Please contact us to discuss specific requirements or visit the Acuity website for more information.