SureCloud's Intelligent GRC platform now 2024 SIG integrated

SureCloud GRC has integrated the 2024 Shared Assessments Standardized Information Gathering Questionnaire (SIG) into its system. This means that organizations can now conduct third-party risk assessments easily and efficiently using a database of predictable, standardized questions. These are all organized by risk control domains, mapping references and risk control categories, resulting in a smoother assessment process.

The 2024 SIG supports SureCloud in being responsive to the changing nature of the regulatory and risk environment. SureCloud GRC is designed to handle increasing complexities in the supply chain through the inclusion of the new Supply Chain Risk Management (SCRM) domain from the 2024 SIG. SureCloud is also aware of the prominence of artificial intelligence (AI) in today’s risk landscape, with its GRC platform also embracing the new AI risk domain in the 2024 SIG.

SureCloud GRC is designed to help your organization stay ahead when it comes to risk management, aligning with the latest regulations and standards and widely adopted standards included in the 2024 SIG. These include:

• NIST Artificial Intelligence 100-1, 2023
• NIST SP-800-161r1, 2022
• Cybersecurity Maturity Model
• Certification (CMMC) 2.0, 2021
• CIS Critical Security Controls v8202
• Interagency Guidance on Third-Party Relationships
• New York DFS’s Climate Guidance
• German Supply Chain Act
• SEC Cybersecurity Rule 206(4)-9
• PCI DSS v4.0
• ISO27001 v2022 and ISO27002 v2022

SureCloud GRC and the 2024 SIG Questionnaire are crucial for improving the efficacy of your third-party risk management (TPRM) programs. Your vendors can respond more efficiently, while your team can benefit from improved internal coordination as a result.

Since its founding in 2006, SureCloud Ltd. has two decades of experience as a leading provider of Governance, Risk, and Compliance (GRC) solutions. Headquartered in the UK, with offices in the US, SureCloud supports a global portfolio of organisations with its holistic and intelligent GRC platform. Whether addressing cyber risk, data privacy, third parties, or compliance demands, SureCloud has a proven record of empowering organisations to continuously identify, manage and automate their risk and regulatory alignment.