Docy Child


Estimated reading: 4 minutes 1071 views

What Is It?

TrustOps® is a TrustCloud TrustCloud application that is designed for startups, SMBs, and enterprises to achieve and maintain adherence to multiple security, privacy, financial, and manufacturing compliance standards. With TrustOps, companies can:

  • Measure security and privacy risk that affect every part of your business
  • Create and maintain a personalized common control framework (CCF) that automatically maps each control to many compliance standards (for startups, TrustOps auto-generates a CCF based on what it learns about your business)
  • Automate control verification and testing to significantly reduce manual work,
  • Get customized policies, derived from your CCF (all policies are mapped to controls, which magically measures the level of compliance and risk within each policy)
  • Maintain a data classification register of all your vendors and systems you use to run your business
  • Streamline the work and reduce the cost of audits by completing evidence collection once, and mapping it to many certification and attestation requirements
  • Set up employee attestation and training workflows to track how employees and teams complete compliance and trust obligations

Who uses it?

The primary administrators of TrustOps are typically:

  • In startups:  CTOs or VPs of Engineering, or Security leads
  • In SMBs:  Security or compliance leads
  • In enterprises:  Security and compliance leads

Apart from admins, every employee in a company that is involved in a security, privacy, or compliance workflow is invited as a user or an ‘owner’ in TrustOps.  These can be folks from engineering, DevOps, HR, finance, IT, security, and compliance.

Supported compliance standards

TrustOps supports the following compliance standards:

  • Security
    • SOC 2 Type 1 and SOC 2 Type 2
    • ISO 27001
    • NIST-CSF
    • CMMC Level 1 and CMMC Level 2
    • PCI (coming soon)
    • HITRUST (coming soon)
    • FedRAMP (coming soon)
  • Privacy
    • GDPR
    • CCPA
    • SOC 2 – Privacy
    • ISO 27701
  • Health
    • HIPAA
  • Finance
    • SOX (coming soon)
  • Quality Management
    • ISO 9001

Video Tour

How TrustOps helps you

  • You spend very little time and money on compliance. Test and workflow automation that is built into TrustOps helps you achieve and maintain compliance with very little effort.  Automated evidence collection and Workflow Automation tests and remediates everything easily. You can also assign ownership of systems, controls, and policies across your entire team to enable periodic self-assessment workflows for systems that have no APIs.  Get intelligent workflow automation to remind teams to attest and upload evidence to prove control adherence.
  • TrustOps helps you create and/or manage a custom controls framework to streamline the process of satisfying many compliance standards. You just have to adopt and test personalized controls that are tailored for your business and easy for your team to understand. Every control is mapped to multiple security and privacy requirements, and crafted to include tests to collect evidence, so you don’t have to do it manually.
  • With TrustOps, you never have to write or maintain policies manually if you don’t want to.  You get customized policies, derived from controls in your compliance program, or, you can link your existing policies with TrustOps, and map controls to them
  • TrustOps helps you automate risk tracking by accurately measuring security and risk across systems, controls, and policies.  You get auto-generated risk scores (that can be added to a risk register), and you use them to identify and manage risks, and truthfully attest to your customers that all your systems that store their data are secure and compliant.
  • Turn on continuous audit readiness assessments.  Always know how far you are from achieving ISO 27001, SOC 2, HIPAA, GDPR, CCPA, ISO 27701, and numerous other compliance standards.  Start with one certification and you’ll be amazed by how you automatically achieve compliance with other standards without additional effort.
  • Onboard / offboard and enable new employees effortlessly.  TrustOps allows you to invite your employees to complete policy attestation workflows, security training, and onboarding / offboarding activities.

Getting Started

To get started with TrustOps:

Join the conversation

Twitter Facebook LinkedIn

❤️  Joyfully crafted by a 100% distributed team.