KRiO
Tool Identity Card
General information
Basic information to identify the product
Tool name : KRiO
Vendor name : SIGEA Sistemas de Protección de la información
Country of origin : Spain
Level of reference of the tool
Details about the coverage or the « originators » of the solution
Coverage : World-wide (state & sector oriented), regional, local
Supported by organization, club,... (e.g. as sponsor) : N/A
Brief description of the product
Give a brief description of the product containing general information, overview of functions...
-
KRiO is a tool RISK MANAGEMENT, based on the ISO 31000 standard which allows you to assess, analyze, treat and integrate multiple scenarios of risk: technological, financial, operational, environmental, regulatory, reputational.
To manage the process of identification, evaluation and treatment of risk, in accordance with 31010 ISO standards, enables compliance with 100% of the process of analysis and management of risks set forth in the rules of high level (HLS).
Supported functionality
Specify the functionality this tool provides.
R.A. Method phases supported
-
Risk identification : Complete
-
Risk analysis : Complete
-
Risk evaluation : Complete
Other phases
-
Asset inventory & evaluation : Allows identification of assets, and set dependency relationships between them.
R.M. Method phases supported
-
Risk assessment : Identification, analysis and assessment.
-
Risk treatment : Threat definition and vulnerability valuating system scenarios
-
Risk acceptance : Define, select and justify of ISO specific Controls
-
Risk communication : Report
Other phases
-
Preliminary Diagnostic : Based in ISO 31000
-
ISMS management : Complete processs SOA & PTR assessment
Other functionality
-
Reports Tool : Automatic report generator
Information processed
-
ISMS: ISMS objectives and scope
-
Statement of Applicability : Controls and ISMS
-
Risk Treatement : Risk Treatment plan
Lifecycle
Date of the first edition, date and number of actual version
Date of first release : 01/05/2015
Date and identification of the last version : 01/06/2015
Useful links
Link for further information
Official web site : http://www.krio.es
User group web site : N/A
Relevant web site : N/A
Languages
List the available languages that the tool supports
Languages available : Spanish, English, Portuguese
Pricing and licensing models
Specify the price for the product (as provided by the company on December 2005)
-
Price : Pay per Use, Per month, Per Year
-
Maintenance fees : Helpdesk one year included in price
Sectors with free availability or discounted price : N/A
Trial before purchase
Details regarding the evaluation period of the tool
CD or download available : Web Demo
Identification required : Yes
Trial period : 15 days by default
Tool architecture
Specify the technologies used in this tool
-
Database : MySQL
-
Web server : Apache Tomcat
-
Application server : N/A
-
Client : Internet (Chrome, Firefox,Internet Explorer,...)
Scope
Target public
Defines the most appropriate type of communities for this tool
-
Government, agencies
-
Large scale companies
-
SME
-
Commercial CIEs
-
Non commercial CIEs
Specific sector : N/A
Spread
Information concerning the spread of this tool
General information : World-wide in many different organisations
Level of detail
Specify the target kind of people for this tool based on its functionality
Management : N/A
Operational : N/A
Technical : N/A
Compliance to IT Standards
List the national or international standard this tool is compliant with
-
ISO/IEC27001
-
ISO/IEC 27002
-
ISO 9001
-
ISO 14001
-
ISO 22301
-
ISO 19600
-
ISO 28000
-
ISO 50001
Tool helps towards a certification
Specify whether the tool helps the company toward a certification according to a standard
-
ISO 31000
Training
Information about possible training courses for this tool
Course : N/A
Duration : N/A
Skills : N/A
Expenses : N/A
Users viewpoint
Skills needed
Specify the skills needed to use and maintain the solution
-
To install : Web Application
-
To use : Simple Interface, easy to be used.
-
To maintain : No updates required
Tool Support
Specify the kind of support the company provides for this product
Support (telephone, email) : Web support
Organization processes integration
Describe user roles this tool supports
Supported Roles
-
N/A
Intergration in Organization activities
-
N/A
Interoperability with other tools
Specify available interfaces or other ways of integration with other tools
-
N/A
Sector adapted knowledge databases supported
Name and describe the sector adapted databases that this tool provides
-
Sector independent
Flexibility of tool's database
Can the database be customized and adapted to client requirements?
-
All parameters customizable
-
Guidelines, threats, vulnerabilities, countermeasures, etc.
-
Interoperable EU Risk Management ToolboxThis document presents the EU RM toolbox, a solution proposed by ENISA to address interoperability concerns related to the use of information...
-
Interoperable EU Risk Management FrameworkThis report proposes a methodology for assessing the potential interoperability of risk management (RM) frameworks and methodologies and presents...