Hi All
It would be great if there was a capability to differentiate between security events and security incidents in eramba. Following ISO27K1 we would issue a non compliance report in the event of a security event. If we could store these somewhere in the system it would be great without them being an actual security incident as per the ISO27K1 definition
In addition if you could log non compliance reports against the individual it would be great (say through the AD connector). With this you would be able to report effectively on who is not working within organizational policies controls etc
Cheers,
John