TraceSecurity enhances TraceCSO with built-in guidance, increased visibility

BATON ROUGE, LA (November 20, 2013) — TraceSecurity, the pioneer in cloud-based IT governance, risk and compliance (GRC) solutions, will launch new enhancements this week to its flagship software solution, TraceCSO. Starting Friday, TraceCSO customers will see improvements that give information security managers more scrutiny and detail for managing their risk profiles, better alignment of risk assessments to the audit process, and changes that increase the solution’s efficiency while lowering implementation costs.

TraceSecurity development engineers have focused on four key areas in today’s update. They include:

  • Expert Risk Assessment Guidance – A significant enhancement to the risk assessment engine, this new feature “builds in” security analyst expertise for guiding users through the process of making changes to risk assessment profiles, thus delivering customized content for managing unique and evolving environments.
  • Vulnerability Acceptance Workflow – This feature allows workflow to guarantee proper accountability and oversight throughout the process. Users can designate personnel who are empowered to accept risk on behalf of the organization, while allowing others to “submit” vulnerabilities as candidates for acceptance. A full approval and periodic review process is built into the system, ensuring the organization can validate proper oversight.
  • Tiered Audit Structure – TraceCSO organizes risk assessments according to various criteria and into successive levels or layers. With today’s release, this hierarchical structure has been applied to the audit structure, as well, ensuring that audits and risk assessments take the same form. Benefits result from a more effective implementation that aligns with lessons learned in the risk assessment.
  • Enhanced GUI Experience – Additional enhancements have improved the usability and overall user experience of TraceCSO. Narrative and contextual changes make the solution more intuitive, thus improving the overall speed and efficiency of the solution.

“Today’s updates further demonstrate the effectiveness of integrating and exposing the Unified Compliance Framework (UCF) into the TraceCSO solution,” said Josh Stone, director of product management at TraceSecurity. “TraceCSO leverages the UCF, a global database of hundreds of security authorities and more than 60,000 regulations and citations, to link IT security strategies directly with compliance requirements, delivering ‘proof of governance.’ TraceCSO continues to simplify management of the ever-changing set of controls needed to meet today’s formal governance and compliance requirements.”

Richard Roark, SVP and CIO of Travis Credit Union, manages a large IT department for this $2B, 22-branch financial institution located in Northern California. Only two of his staff, however, are dedicated to information security. TraceCSO is a critical component of the company’s security strategy.

“The integrated visibility of the TraceCSO solution is particularly relevant to us,” Roark said. “Not only does the solution help us to reduce complexity and costs, it helps us to avoid keeping track of information across multiple systems.  We are working to add all of our vendors, assets and disaster recovery information to this centralized solution.  It is a robust system with excellent reporting.”

TraceCSO is the industry’s first cloud solution for a holistic and risk-based information security program that delivers comprehensive visibility and accountability for improved risk and compliance profiles across all areas of an organization. TraceCSO allows organizations of any size, industry or security skill set to evaluate, create, implement and manage a comprehensive risk-based information security program, to protect their organizations from today’s top information security risks.

About TraceSecurity

TraceSecurity, a leading pioneer in cloud-based security solutions, provides IT governance, risk and compliance (GRC) management solutions. The company’s cloud-based services help organizations achieve, maintain and demonstrate security compliance while significantly improving their security posture. With more than 1,500 customers, TraceSecurity supports the security and risk management efforts of organizations in financial services, healthcare, high-tech, insurance, government, education and other regulated sectors. Founded in 2004, the company has executive offices in Silicon Valley and offices in Baton Rouge, La.  For more information, call (225) 612-2121 or visit

More News