Automated determination of the protection requirements
Aggregation of protection requirements through inheritance of protection requirement assessments for each IT component
Request demo Free trial White paperProtection requirement assessments become part of the IT landscape

Protection requirement assessments become part of the IT landscape
Versio.io allows you to capture and edit protection requirements or import them from third-party systems.
In Versio.io, protection requirements are directly related to the target object to be protected. Thus, the protection requirements become part of the IT infrastructure and application landscape (topology) and thus part of the daily operational work processes.
The figure shows a protection requirements assessment (PRA in red), which directly references the IT service (database 'nation').
Aggregate protection requirements for component of the IT landscape through inheritance

Aggregate protection requirements for component of the IT landscape through inheritance
For each individual structural element of the IT infrastructure and application landscape, the specific protection requirements must be determined on the basis of the existing protection requirements.
Versio.io determines the protection requirements for each structural element depending on the existing protection requirements based on inheritance methods (maximum, dependency, accumulation, distribution).
The figure shows a host computer that is affected by two related protection requirements and the resulting aggregated protection requirement for the host computer.
Efficient management & use of protection requirements assessment with Versio.io
- Information basis for structural analysis - Versio.io uses the asset & configuration repository to provide all the information for the initial structural analysis as part of the protection requirements assessment in the form of data, processes, IT systems, applications, rooms and communication links to be considered.
- Management or integration of protection requirement assessments - Versio.io allows you to capture and edit protection requirement assessments or import them from third-party systems.
- Change management of protection requirement assessments - Versio.io detects changes in protection requirement assessments and historizes them in an automated and audit-proof manner.
- Determination of the protection requirement - Versio.io determines the protection requirements for each structural element depending on the existing protection requirements assessment according to different inheritance methods (maximum, dependency, accumulation, distribution).
- Compliance of protection requirement assessments - Each change to a protection requirement assessments statement can be verified for content (naming convention, completeness, etc.).
- Simulation of the impact of protection requirement assessments - Determine the impact of new or modified protection requirements on structural elements.
- Determination of cost optimization by means of inherited protection requirements - Identification of cost optimization based on inherited protection requirements and potential operational adaptation of structural elements (e.g. database management systems, virtualization platforms, etc.).
Read mote

Governance, risk & compliance automation
The Versio.io governance, risk & compliance (GRC) solution enables companies to digitally capture their internal and legal policies and automate verification. Efficiently to more risk transparency!

Asset & configuration item repository
Versio.io provides a central asset & configuration item repository and extends the classic configuration management database (CMDB) approach with historized and topologized data.
Autor | Januar 2022

Keywords