Track remediation plans (POAMs), generate System Security Plans, and run audit assessments.
Compliance Ops is the operations hub for your compliance program. It has three tabs: POAM (Plan of Action & Milestones — remediation plans with owners and status), SSP (System Security Plan generation and export), and Audit Assessments (tracking 3PAO/assessor audit campaigns).
Open Compliance Ops from the sidebar.
On the POAM tab, create remediation plans from findings or violations, assign owners, and track each to closure.
On the SSP tab, generate a System Security Plan from your current control coverage and export it for submission.
On the Audit Assessments tab, set up and track an audit campaign, collecting the evidence assessors need.
Use the POAM status fields to keep an auditable record of what was remediated and when.
Jump straight to the feature, or browse the rest of the guides.