LogicGate Risk Cloud® Services Descriptions

Risk Cloud Use Cases

Standard Use Cases

Enterprise Risk Management, Third-Party Risk Management, IT Security Risk, Control Audit Management, Compliance Management, Incident Management, Issues Management, Policy Management, Regulatory Compliance, Internal Audit Management, Procurement & Contract Management, Business Continuity Management, Data Privacy

Risk Cloud Platform

Application

An Application is a distinct set of rules and logic built in Risk Cloud supporting a singular use case, as determined by the LogicGate team.  Live Applications are those used in a production setting and count towards the contracted Application amount.

Power User

Power User functionality includes all Standard User abilities (see below), in addition to the ability to create, modify, and manage Applications. This includes, but is not limited to, jobs, workflows and steps. This user has “Build” permissions in Risk Cloud. This user type was previously denoted as a “Primary User.”

Standard User

Standard Users can view and interact with records, complete tasks, view home screens, view and create reports and dashboards, and view audit history of records. Standard Users cannot create or manage Applications and cannot be assigned the “Build” permission. This user type was previously denoted as a “Secondary User.”

External User

External Users can receive email notifications and perform work using unique, tokenized links. External Users do not have their own login.

Additional Product Features

Single Tenancy 

Provides database infrastructure that is not shared with other tenants.

Risk Cloud Documents

Provides the ability to configure document templates using a template-building tool called Formstack , and enables users to automate document generation in Risk Cloud. Includes access to up to 50 Reports and 2,000 Downloads (per month).

Risk Cloud Quantify

Provides access to a risk quantification product that can be used for the purpose of calculating the potential loss exposure range in monetary terms for a given risk scenario.

Public Pages

Public Pages allow you to create publicly available forms that can be submitted by anyone with the unique link.

SCIM User Provisioning

Provides access to SCIM 2.0 supported auto-provisioning that allows integration with identity management systems. Includes support for the following functions: Create, Update, and Deactivate users.

Implementation & Professional Services

Quick Start Implementation

LogicGate’s Quick Start Implementation Option provides up to 40 hours of hands-on configuration support for an eligible Risk Cloud Application template typically within a 45-day period from the Kickoff Date. Included in the service is:

Standard Implementation

LogicGate’s Standard Implementation Option provides up to 90 hours of hands-on configuration support for any of LogicGate’s Standard Use Cases, using an official Risk Cloud Application template or a custom build, typically within a 100-day period from the Kickoff Date. Included in the service is:

Custom Implementation

Subject to a required scoping exercise, LogicGate’s Custom Implementation Option provides implementation services for any use case not included in LogicGate's Standard Use Cases and/or any implementation that will require more than 90 hours of Implementation Services. This implementation includes all Standard Implementation service offerings, as well as any additional services scoped and agreed upon within a Statement of Work.

Implementation Scope

Each implementation option listed above can be used to cover the implementation of one Application.

Standard Success

Includes access to the LogicGate Help Center (help.logicgate.com); core Risk Cloud training content on LogicGate Learning portal; bi-annual syncs with your LogicGate Customer Success Manager and/or Relationship Manager to review business outcomes and metrics, as well as get updates on Risk Cloud product offerings; in-app chat support; and updates related to the latest version of Risk Cloud Standards and Regulations Content provided to you, upon request, via spreadsheet within 60 days of a major release published by the authoritative source.

Premier Success

Includes access to the LogicGate Help Center (help.logicgate.com); core Risk Cloud training content on LogicGate Learning portal; quarterly syncs with your LogicGate Customer Success Manager and/or Relationship Manager to review business outcomes and metrics, as well as get updates on Risk Cloud product offerings; in-app chat support; up to six (6) hours per month of configuration, system administration, content update, or GRC process design and enablement support from the Risk Cloud Consultant team, who can provide expert LogicGate product support; and, upon request, support with loading the latest version of Risk Cloud Standards and Regulations Content within 60 days of a major release published by the authoritative source, as well as mapping the new version to the “primary control set” (i.e., Secure Controls Framework or HITRUST) within 60 days of a major release from the primary control set’s authoritative source, to maintain relevant control mappings.

Professional Service Bundles

Ten (10) hours of access to the Risk Cloud Consultant Team, in addition to either of the Success packages listed above. Can be used for additional configuration, system administration, content update, or GRC process design and enablement support; and support with applying updates to existing control mappings for Risk Cloud Standards and Regulations Content.

Implementation Add-Ons

Project Plan Development & Management

Risk Cloud Implementation Team will collaborate with Customer to provide guidance on key project activities and milestones, along with expected timing based on Customer’s timeline requirements, if applicable. Risk Cloud Implementation Team will work with Customer throughout the implementation to track towards the expected timeline and adjust as needed. Includes up to 8 hours of services.

Data Structure Diagram

Risk Cloud Implementation Team will collaborate with Customer to confirm Customer’s overarching vision for the in-scope interconnected workflows and applications to be built in the LogicGate Risk Cloud platform. The development of the data structure diagram will be facilitated via virtual whiteboard sessions, during which the teams will align on the high-level data structures (i.e., workflows) and how they will be related. Includes up to 8 hours of services.

Advanced Power User Training

Risk Cloud Implementation Team will collaborate with Customer to identify advanced Power User training topics to cover. Risk Cloud Implementation Team will lead live virtual Power User training and provide a recording of the session(s) to Customer. Includes up to 4 hours of services.

End User Training

Risk Cloud Implementation Team will collaborate with Customer to identify key topics for the end user training. Risk Cloud Implementation Team will develop a training based on the agreed upon topics. Customer is responsible for gathering the correct end users and setting a time for the training. Risk Cloud Implementation Team will conduct virtual end user training via web conference and provide a recording of the session(s) to Customer. Includes up to 8 hours of services.

Custom Instructional Videos

Risk Cloud Implementation Team will collaborate with Customer to create an outline for the instructional video. Customer is responsible for providing feedback on the script and approving it. Risk Cloud Implementation Team is responsible for recording the video based on the agreed upon script. The video will be provided to Customer as an MP4 file. Includes up to 8 hours of services.

Custom Power User Maintenance Manual

Risk Cloud Implementation Team will document how the Application was created and provide steps on how to maintain and edit the Application going forward (step by step guidance may contain links to external help articles or training material). Includes up to 8 hours of services.

Workflow Narrative

Risk Cloud Implementation Team will document all of the Workflows built, how they are connected and the objects each Workflow is capturing. The Workflow Narrative will be provided to Customer at the end of the Implementation period. Includes up to 4 hours of services.

Jobs Matrix

Risk Cloud Implementation Team will provide documentation of all the applicable Jobs for the Application built. The Job Matrix will include information like Job Type, Workflow, Steps, Recipients, Conditions, and Operations. Includes up to 4 hours of services.

Document Report Configuration

Risk Cloud Implementation Team will provide initial setup of report(s) based on Customer-provided template(s) and basic training on how to utilize reports. Customer is responsible for providing template(s) for any report(s) created. Includes up to 10 hours of services.

Additional Data Import & Mapping

Risk Cloud Implementation Team will import and map data provided by Customer for up to 3 workflows, 500 records per workflow. Risk Cloud Implementation Team will provide Customer with data load template(s) and Customer is responsible for providing data and mappings in the correct format. Includes up to 4 hours of services.

Integrations

Ascent Regulators

Includes obligation, rule, and metadata for a given Ascent regulator integrated into the “Regulatory Compliance Powered by Ascent” Application within the Risk Cloud.

Black Kite Vendor Monitoring (100)

Includes a bucket of 100 vendors monitored by Black Kite bringing over the Cyber Security Rating, Ransomware Index, Breach Index, Compliance Rating, Compliance Completeness, Compliance Confidence, and all FAIR scoring fields directly to the vendor level within the Risk Cloud TPRM application.

CUBE Regulatory Content

Includes regulatory information directly from CUBE to monitor changes within tracked regulatory bodies. These can be broken down based upon changes, obligations, and in some cases horizon scanning capabilities if this level of the CUBE platform is purchased. This data is integrated into the Regulatory Compliance application within Risk Cloud.

CUBE Regulatory Services

Custom-scoped services required for the implementation and integration of CUBE Regulatory Content.

Workato

Middleware platform utilized for Risk Cloud Connector integrations. Customer’s use of Workato Services is subject to Workato’s Terms of Use and Workato’s Privacy Policy.

Native Integrations

Provides access to all integrations native to Risk Cloud.

API Access

Access to the RESTful API, allowing you to connect Risk Cloud to third-party tools.

Risk Cloud Connector

Pre-built connector or custom-built connector by LogicGate’s Integration Services Team to connect to common SaaS platforms or GRC use cases.

Integration Service Bundles

Ten (10) hours of access to the LogicGate Integration Services Team, in addition to the Risk Cloud Connector above. Will be used to build out the integration to the exact specifications required by the Customer.