Who Uses This Software?

Medium to large organizations in all industry sectors anywhere in the world. We have customers in both public and private sectors.


Average Ratings

1 Review
  • 5 / 5
    Overall
  • 5 / 5
    Ease of Use
  • 5 / 5
    Customer Service

Product Details

  • Free Version
    Yes
  • Free Trial
    Yes
  • Deployment
    Cloud, SaaS, Web
    Installed - Windows
    Mobile - iOS Native
  • Training
    Documentation
    Live Online
    In Person
  • Support
    Business Hours

Vendor Details

  • Citicus
  • www.citicus.com
  • United Kingdom

About Citicus ONE

Software for managing risk and compliance for information systems, vendors, physical sites and process control systems across an enterprise.


Spotlight_media_placeholder

Citicus ONE Features

  • Archiving & Retention
  • Audit Trail
  • Controls Testing
  • Environmental Compliance
  • FDA Compliance
  • HIPAA Compliance
  • ISO Compliance
  • OSHA Compliance
  • Risk Alerts
  • Sarbanes-Oxley Compliance
  • Version Control
  • Auditing
  • Business Process Control
  • Compliance Management
  • Corrective Actions (CAPA)
  • Dashboard
  • Incident Management
  • Internal Controls Management
  • Risk Assessment

Citicus ONE Reviews

Great methodology -- visual results -- superb iPhone/iPad app for Criticality Assessments

Sep 04, 2015
5/5
Overall
5 / 5
Ease of Use
5 / 5
Customer Support

Comments: I've implemented FIRM using Citicus ONE at two previous large organizations (each with thousands of users and hundreds of systems & applications).

Pros: the FIRM methodology is lightweight and quite straightforward; different control sets, including ISO/IEC 27002; the agreed Harm Reference Table can be adopted across the whole organization; the free Citicus MOCA app for iPhone/iPad is brilliant and a PDF Criticality Report should accompany every business case; Criticality Assessments and league tables help to focus on key "information resources"; Citicus ONE drives the workshops, action plans & tracked action items; can run on-site, or off-site as a hosted service.

Cons: not having the time to extend the control questionnaires with our own questions and make use of the dynamic logic flows; 2-3 hour facilitated workshops to fill out the initial Information Risk Scorecard.