Standard and Custom Control Sets
Totem’s Cybersecurity Compliance Management Software is the most in-depth cybersecurity compliance software. It comes packaged with multiple cybersecurity frameworks. With the flip of a switch the organization can engage an additional privacy control set for all levels of the CMMC, NIST 800-171, HIPAA Security Rule, GDPR, as well as ISO 27001. We can create custom control sets tailored to your cybersecurity planning needs.
System Security Plan Management
Totem’s Cybersecurity Compliance Software acts as the repository for the IT System Security Plan (SSP), a container for all strategic policies and implementations. We don’t just hit high level controls but dig down deep to the actions organizations need to put into place to meet those controls. Our Compliance Software addresses all required assessment objectives making an audit or certification process simpler. Our software even simplifies cybersecurity organizational actions for frameworks such as HIPAA or ISO 27001 that do not break down required assessment objectives.
Features of Totem's Cybersecurity Compliance Management Software
Description of Organizational Environment
Engage Privacy Controls (for HIPAA organizations)
Import and Export Documents
Multiple Control Sets:
• NIST 800-171
• ISO 27001
• GDPR / CCPA
Controls broken down into “Organizational Actions” (what NIST calls “Assessment Objectives”) for more explanation and granular plan/policy control.
Manage/Justify (for N/A) implementation details for each control at the Organizational Action level.
Mark each control as being implemented through:
• Hybrid (mix of policy and technology)
Policy/Hybrid controls automatically populated into “Policy Document” to be provided to implementers (e.g. outsource IT staff).
Upload/attach Compelling Evidence Artifacts
Supplemental Guidance/discussion of each Control
Global or Field-level Search
Mark Non-compliant Controls to Include in POA&M
Corrective Action Plan (CAP) Development
Description of Weakness
Description of Action Plan
Designate Responsible Party
Set Completion Date
Manage POA&M through GUI
Export POA&M in US DoD Format (spreadsheet)
Mark Each Control as Compliant/Non-compliant
Assessor/Auditor Comments Field
Export SAR (spreadsheet)
Executive Compliance Summary
Highlight of Weak Areas
Incident Response Plan
Incident Response Report
Achieve Compliance with our Cybersecurity Compliance Software for only $295 / Month.
1 Totem Cybersecurity Compliance Management Software License
1 User Account *
Updates for all Compliance Changes
Access to Totem Knowledge Base
10% Discount on Trainings and Services
All Features of Self-Managed Compliance
Dedicated Cybersecurity Account Manager
Access to monthly 1-on-1 CAM Appointment or Town Hall Q&A Session
$125 per client Organization per month (one user)
$25 / month per additional user for an organization
One Hour Management Training at a one-time fee of $324 **
Customer Data Entirely Under your Control