CyberCTRL is tmg’s cloud-based SaaS that integrates Governance, Risk, and Compliance (GRC) with Security Orchestration, Automation, and Response (SOAR), seamlessly integrating with its Extended Detection and Response (XDR) modules. CyberCTRL’s extensive APIs allow for smooth integration with ticketing systems, external scanners and controls, and asset/portfolio management systems. A partial feature list includes:

Centralized data storage (Data Lake)

Governance Management

Compliance Management

Risk Management

  • Identity Management System (IMS) or Configuration Management Database (CMDB)
  • National Institute of Standards and Technology (NIST) Cybersecurity and Privacy Frameworks
  • Workflow/project management engine
  • Document management
  • Continuously updated default best practices, policies, standards, procedures and guidelines
  • Compliance/audit readiness assessment
  • Framework cross-walking
  • NIST National Vulnerability Database (NVD)
  • Compliance controls mapped to risks and assets
  • Internal risk assessments
  • Vendor/third party oversight and risk assessments
  • Risk register
  • Continuously updated risk scores
  • Risk gap analysis and mitigation

Cybersecurity Orchestration

Threat Detection

Threat Intelligence

  • End-user behavior analytics

  • Vulnerability scanning

  • Endpoint Protection Platform (EPP)/
    Endpoint Detection and Response (EDR)

  • Data Loss Prevention (DLP)
  • Network Detection and Response (NDR)

  • Unified Endpoint Management (UEM)

  • Cloud Workload Protection Platform (CWPP)

  • Cloud Access Security Broker (CASB)

  • Secure Web & Email Gateway (SWG & SEG)

  • Intrusion detection and intrusion prevention systems (IDS/IPS)

  • Security information and event management (SIEM)

  • Threat intelligence aggregation, curation, and distribution

  • Alert enrichment

  • Threat hunting

  • Threat intelligence visualization

  • Threat reporting

  • Threat source correlation

Security Operations Automation

Cybersecurity Incident Response (IR)

  • Play/Process/Workflow Automation

  • Playbook Management

  • Log analysis

  • Ticket checking

  • Ticket auditing

  • AI and machine learning

  • Threat recommendations

  • Threat elevation

  • Case/incident management

  • Investigation/Triage

  • Plays/Processes/Workflows

  • Incident knowledgebase

  • Cross-department collaboration

  • Lessons learned

  • Full audit trail

  • Forensic trail

Security Analytics

Security Reporting

CyberCTRL is available only as a subscription service, which includes tmg’s Security Operations Center (SOC) analysts and consultants at no extra cost. Incident Response services are also included as part of our cybersecurity and privacy managed services.