What is 360inControl®?

360inControl® is a new generation of an internal control system (ICS), comprising governance risk & compliance (GRC), information security management system (ISMS), an inventory with customisable classification levels and audit management.

Beyond compliance and operations, it provides information and hence business centric Integrated Risk Management (IRM) functionality.

Your smart internal control system

One Stop Shop Solution

Internal Control System (ICS)

Governance, Risk- and Compliance Management (GRC)

Information Security Management System (ISMS)

Contract Management

Audit and Assessment Management

Data Processing Register

Remediation Management

Certification and Inspection Preparation

Managed Control Library

Unique controls mapped to e.g. ISO 27x series, ISO 9001, ISO 22301, COBIT, ITIL, PCI, GDPR, SANS CSC

Service Organizations; Easy preparation for SOC 2 Reports for with Trust Services Criteria

Maturity Classification

Per control, determine detail level and assign maturity levels

In addition to the maturity, the KPIs ‘Controller Fulfilment’ and ‘Control Domain Fulfilment’ can be measured

Your smart internal control system provides


Integration of company controls and frameworks, legislation and standards

Mapping of company structure

Connection to a data lake



Across organizations and functions, with increased transparency

Supported by realtime dashboard

Managed SaaS Service

Secure and protected

Scalable and reliable

Ready to use, straight away

The right equipment to make you feel good

Inventory & Valuation

For a truly risk-based approach, you need to know what you have and how valuable it is.

In the digital age, Information is the most valuable asset for companies. The inventory is essential to collect all relevant information such as production processes, customer or patient data, strategies, board minutes, etc.

In addition you can manage your contracts, suppliers, processes, services etc.

The classification of information according to availability, confidentiality, integrity, data protection and legal relevance helps to distinguish key information from less relevant information.

The knowledge of your information and its value is necessary to define the right protection mechanisms and their implementation.

Data processing register: For Data Protection – you can also maintain the “records of processing activities” (GDPR Art. 30). Audit trail included.

Risk Management

Risk management as integral part of the organization. Risk Assessments can be easily planned and executed. The direct linkage to the business information and audits or assessments supports the decision-making process.

Comprehensive master data management allows to define specific values e.g. for likelihood, impact, threats, risk levels, different risk matrix with tailor-made acceptance line.

Manage and monitore your Key Risk Indicators (KRI).

With the role-based access restrictions for sensitive assessments can be easily assigned. Risks will be collected in the centralize risk inventory and can be escalated to next level.

Based on the risk inventory enterprise risk management has the overview of all risks within the company and can easily analyze and report them.

Status and assessment reports are available on fingertips.

Managed full flexible Control Library

The managed and comprehensive control library was developed from practice for practice. The controls cover the requirements of international standards and regulations.

In addition, well elaborated recommendations and reasons are given per control. Company-specific controls can be easily added and maintained.

Audit & Assessment Preparation

 Audit and assessment preparation made easy. In connection with the control library, a wide variety of audits and assessments can be planned within a very short time.

Whether one-off or recurring planning, templates can be created and maintained easily. Versioning included.

Audit & Assessment Execution

Audits and assessments can also be carried out directly. The selection of existing controls from the control library and the addition of own controls allows the greatest possible flexibility in carrying out audits and assessments.
Individual controls or control areas can be assigned directly to team members as work packages for execution.
Review comments and management summary can be included.
The report is generated at the click of a button. Adjustments possible.

Remediation Management

Remediation and action points under control. Action items can be assigned directly. This ensures that nothing is forgotten. Status of the action items is listed in the dashboard of the persons responsible.

Transparency and control are guaranteed. Each action item can be traced back to its origin.


The company structure is easily adaptable. Master data can be adapted as required. 

Configurable user management including role management available.

Continuous improvement

By implementing controls in the business processes, the maturity of the company is significantly increased. Customer-specific requirements can be better met and the business result improved.

Risks are identified at an early stage and measures defined. Don’t avoid risks, manage risks by turning risks into opportunities.

Benefits for all user groups


  • A central corporate memory

  • Centralization of cyber security, governance, risk and compliance

  • Cost savings by improving business processes, reducing redundant systems and excel sheets

  • Collaboration is optimized across organizations

  • Simplification by applying the same methods, standards and application

Consulting Firm

  • Planning and execution of Audits and assessments

  • Cyber Security

  • Governance, Risk & Compliance

  • Supplier Assessments

  • Business process optimization

  • Access to a comprehensive control library

  • Fast reaction to changing requirements


  • Overview of all activities including current status

  • Continuous improvement made visible

  • Transparency in all areas of responsibility

  • Evaluate the effectiveness of controls

  • Active Risk Management

  • Reporting to next level Management made easy

  • Measurability and effectiveness of controls supports planning

  • Identification of areas for  budgeting and investing based on facts


  • Efficient creation and exhibition of audits and assessments

  • Easy preparation for official audits

  • Active management of action items and remedation

  • Faciliating cooperation across organizations

  • Gain experience in different areas by applying the controls

  • Do not reinvent the wheel – control ibrary provides basis for own controls

  • Improvement made visible