Skip to content
Controls management

Controls management. With added confidence.

Your controls program might be in-depth, but that doesn't mean it can't all be managed in one place. Protecht's evolved controls management functionality makes it easier than ever to know whether your controls are in place and how they're mitigating risk. All while keeping your business compliant as well.

Request a demo Download brochure

Turn controls complexity into controls confidence

Maximise efficiency with a unified, data-driven approach to controls and assurance

  • Improve data accuracy and consistency with a single source of truth for controls management, testing, and assurance

  • Have confidence in decisions with aggregated data powering analytics reporting on your control program activities

  • Streamline control testing activities using templates and auto scheduling of control tests

  • Link controls to risks, obligations, incidents, issues and other data for more informed assessments

  • Quickly identify red flags with efficient and effective controls assurance

Promote collaboration and accountability

Foster organisation-wide collaboration and accountability in controls management

  • Foster a shared understanding of controls across the whole organisation

  • Improve communication and collaboration around controls with clear ownership assignments and visibility

  • Enhance accountability for control execution with clear ownership and deadline tracking

Ensure compliance with regulations, standards and control frameworks

Simplify compliance with seamless integration of controls and regulatory frameworks

  • Easily link controls from your central library to industry standards and regulations

  • Prevent redundant and duplicate controls

  • Easily map between frameworks to streamline compliance with multiple standards

  • Capture relevant details of appropriate regulation, industry standards and authority documents

  • Ensure compliance with evolving regulatory requirements

Unlock clear visibility of all your controls

Build a tailored, expert-driven controls framework that aligns with your objectives

  • Mature your controls program with best-practice control assessment and testing forms

  • Tailor the framework building process to your specific needs and seamlessly integrate it to your risk assessment

  • Bring structure and visibility to your controls to align them with strategic and operational objectives

  • Connect controls with your broader risk and compliance initiatives to gain insights into your alignment with objectives

Controls management brochure.

With a single source of truth, gain confidence that your controls program is managing risk effectively.

Download brochure

Mastering controls for risk management eBook.

How to build a controls management framework that is effective, fit for purpose and integrated with your enterprise risk management system.

Find out more

Cyber risk management eBook.

How boards, executives and managers can meet their responsibilities to address growing and changing cyber threats.

Find out more

Buyer’s guide.

What an ERM solution is, why you need one, and how to make the right choice.

Get the buyer’s guide

Streamline your controls program to manage risk more effectively.

Preconfigured content - for a turnkey launch

Optimise your risk management at the click of a button. Set up and maintain your ERM system with Marketplace: preconfigured registers, dashboards and reports.

Popular register packages for IT risk management

ISMS Control Library – ISO 27001

Provides a Control Library in line with the ISO/IEC 27001:2022 standard. These controls can be downloaded into the central library and tailored specifically to your organisation. The controls are also mapped to controls in SOC 2 Trust Services Criteria, NIST CSF and APRA CPS234, allowing customers to save time determining overlap in their implemented controls.

ISMS Control Library – NIST CSF v1.1

Provides a Control Library in line with the NIST CSF control framework. These controls can be downloaded into the central library and tailored specifically to your organisation. The controls are also mapped to controls in SOC 2 Trust Services Criteria and ISO 27001, allowing customers to save time determining overlap in their implemented controls.

ISMS Control Library – NIST CSF v2

This package provides a NIST CSF 2.0 Control Library in line with the NIST CSF v2 control framework released in Feb 2024. These controls can be downloaded into the central library and tailored specifically to your organisation. Protecht has also provided a mapping to other common ISMS industry standards/frameworks like SOC 2 Trust Services Criteria and ISO 27001.

ISMS Control Library – SOC2 POF & TSC

Provides a Control Library in line with the SOC 2 criteria. The SOC 2 POF (Point of Focus) control library has been designed by Protecht as suggested controls to comply with the SOC 2 TSC (Trust Services Criteria) requirements. These controls can be downloaded into the central library and tailored specifically to your organisation. The controls are also mapped to controls in NIST CSF and ISO 27001, allowing customers to save time determining overlap in their implemented controls.

ISMS Control Library – APRA 234

Provides a Control Library in line with the APRA CPS 234 prudential standard. These controls can be downloaded into the central library and tailored specifically to your organisation. The controls are also mapped to controls in ISO 27001, allowing customers to save time determining overlap in their implemented controls.

ISMS Registers and Dashboards

Streamlines data capture and reporting to help organisations manage:

  • Controls, statements of applicability and assurance activities

  • Conducting and overseeing IT risk assessments

  • Asset and application risks and health assessments

  • Cataloguing, reviewing and approving policies, policy exceptions and documents

  • Minimising disruption from incidents

  • Visibility of ISMS actions

  • Capturing of exceptions with the policy and documents register

  • Generating risk reports for risk events and ISMS risk entries of interest

ISMS - Security Calendar

Systematically capture and track important security events such as penetration test due dates, cryptographic key renewals, and audits. The ISMS Security Calendar register and dashboard allow you to:

  • Assign ownership and due dates to key events

  • Report on status of events and their completion

  • Provide a centralised repository of important security events

CISO Dashboard

Presents key information from the ISMS registers providing an overview of:

  • IT controls

  • IT risks and drilldown details

  • IT assets and their status

  • IT policies and policy exceptions

  • Helps the user to report on the IT risk posture of the organisation and inform decisions regarding cybersecurity and ISMS strategy.

Controls management product tours

Meeting CPS 230 controls requirements with Protecht ERM

Strengthen your controls. Streamline your compliance.

 

As CPS 230 deadlines approach, Protecht ERM empowers regulated entities to embed controls across operations, align them with compliance obligations, and manage both third- and fourth-party risks. Our integrated solution ensures your controls framework supports prevention, monitoring, and resilience positioning you for compliance and long-term operational success.

Find out more

Find out more about controls management

Thought leadership and product demonstration webinars

Thought leadership webinar

From controls chaos to controls assurance.

Product demonstration webinar

Build a robust controls program with Protecht ERM.

Thought leadership webinar

Cyber risk: Get on top of your controls and frameworks.

Product demonstration webinar

Streamline your IT controls: Simplify cyber compliance with Protecht ERM.

Thought leadership webinar

Control frameworks and compliance: Bridging the gap to risk management.

Thought leadership webinar

AI risk controls: Is your AI under control or running wild?