Evidence upload
Tracking Requirements
Evidence Upload: The Key for Product Compliance
As part of the Cisco requirement mitigation process, internal product teams are required by the business or federal mandate to upload documentation, such as penetration tests or JIRA ticket communication, that prove the project is secure.
I started to take notice through user interviews that the existing process of uploading this documentation was cumbersome for all of our user types. I worked with the Security Insights development team to initiative batch upload of different documentation types (files, URLs, and notes) – the first interaction of its type across the platform.
I then worked closely with our security architect users to take evidence documentation a step further, verifying uploaded items for compliancy in the Security & Trust organization.
PROBLEM
How might we enable our users to batch upload documentation needed for security requirements, and gain internal security verification quickly and easily?
Last Evidence Item in Queue to Review
Verified Evidence in Right Drawer of Risk Tracker
Evidence Details- Tracker
