IT GRC (Governance, Risk Management & Compliance) software as a service tool. AlterRisk is a specialized software tool designed for risk management and compliance with the relevant world standards. It is based on the best and proven practices in the ICT industry for systematic information system management and has built-in knowledge base for relevant information security threats, standards and controls. Key features: - Knowledge base of controls and their connections with known standards (ISO 27001: 2013, ISO 27002: 2013, ISO 22301: 2019, CobiT, NIST, PCI DSS, GDPR, ...) - Selection of KPI metrics from the knowledge base - Management of findings/vulnerabilities/non-compliances and recommendations - Automatic risk identification from the knowledge base - Connection to the system of internal IT controls from the knowledge base - Creating a register of information assets - Development of a catalogue of IT services and processes (ITIL) - Support for conducting BIA business impact analysis - GDPR support (personal data processing register, consent management, handling personal data rights, … Interface and integrations: - Import data from Excel, CSV - API for data entry (REST/JSON) - Print and export all data to Excel, PDF, Word