Complynix — Rise Beyond Compliance

Overview

Modules

Frameworks

Seats & Plan

Feature Flags

Tenant

Security

Add Framework

Notifications

Quotes

Loading…

Create Audit

Fill in all details to register a new audit engagement

Applicable Framework

All built-in and custom frameworks from Frameworks & Controls are listed here.

Tags (comma-separated)

Auditees (can upload evidence & artifacts only)

Click to add auditees...

Auditors (review evidence & give first-level approval)

Click to add auditors...

Approver * (final sign-off authority — cannot approve own evidence)

This action is irreversible

Deleting this audit will permanently remove all associated evidence records. Findings linked to this audit will remain but lose their audit reference.

ISO / Framework Clause

Likelihood (1–5)

1=Rare → 5=Almost Certain

Impact (1–5)

1=Negligible → 5=Catastrophic

Inherent Score Preview

Control Effectiveness (%)

0=No controls → 100=Fully mitigated

Residual Score Preview

Tags (comma-separated)

Treatment Plan Details

Change Comment (optional — logged to change history)

Enterprise Risk Register — Report Export

Aligned with ISO 31000:2018 · COSO ERM 2017 · NIST SP 800-30 · ISO 27001:2022 · SOX · Basel III · GDPR · PCI DSS v4 · King IV · HIPAA · ISO 22301 · SEBI CSCRF

Step 1 — Output Format

Step 2 — Report Identity & Authority

Report Title

Organisation Name

Report Purpose / Audience

Classification

Prepared By (name, title)

Reviewed / Approved By

Report Period — From

Report Period — To

Step 3 — Sections to Include Choose what appears in the report

CXO Executive Summary Board

KPIs · Risk posture narrative · Appetite statement · Board-ready insights

Risk Analytics & Distribution

Rating · Status · Treatment mix · Category breakdown · Business unit view

Category Deep-Dive New

Per-category avg scores · Top risk · Overdue count · Reduction %

Score Trend Analysis

Month-over-month inherent vs residual · Trend direction

Risk Heat Map

5×5 likelihood × impact matrix with risk references

Critical & High Risks — Detail Cards Board

Full card per Critical/High risk — scores, owner, treatment plan

Full Risk Register Table

All risks — ref · scores · owner · status · treatment · frameworks

Per-Risk Narrative Pages

Full description · treatment plan · control notes per risk (long)

Mitigation Action Plan

All treatment actions · status · owner · due dates · progress

Risk Appetite & Tolerance Analysis

Appetite statement · threshold · breach list · compliance rate

Overdue Risks & Escalation List

Risks past target closure · days overdue · owner · escalation needed

Risk Assessment Linked Findings New

RA-generated risks · assessment traceability · approver sign-off

Regulatory & Framework Compliance Matrix New

ISO 31000 · COSO · NIST · SOX · Basel III · GDPR · PCI · King IV · HIPAA · SEBI

Change Log & Audit Trail

Full field-level change history per risk (compliance / audit use)

Signature & Attestation Block New

Prepared-by · Reviewed-by · Approved-by sign-off with date fields

Disclaimer & Limitations Notice

Standard liability disclaimer required for regulatory submissions

Include Closed/Mitigated?

Enterprise Audit Management — Report Export

Aligned with ISO 27001:2022 · ISO 19011 · NIST CSF · SOC 2 · GDPR · IIA Standards · SOX Section 302/404

Step 1 — Output Format

Step 2 — Report Identity & Authority

Report Title

Organisation Name

Report Purpose / Audience

Classification

Prepared By (name, title)

Reviewed / Approved By

Report Period — From

Report Period — To

Step 3 — Sections to Include Choose what appears in the report

Executive Summary & KPIs Board

Audit status KPIs · score analytics · findings overview · remediation rate · executive narrative

Audit Portfolio Overview Board

Type & framework distribution charts · full portfolio table with scores

Score & Status Distribution New

Evidence score ranges · workflow status breakdown · dept comparison

Department Exposure Analysis

Per-dept audit count · avg score · open findings · coverage bar

Findings Severity Analysis Board

Severity & status distribution · full findings table sorted by severity

Open Findings Register

All unresolved findings with description, owner, due date

Overdue & At-Risk Items Board

Past-due findings · escalation callout · owner accountability

Remediation Action Tracker

All findings with recommendations · owners · due dates · status

Detailed Audit Cards

Per-audit scope · team · score bar · inline findings · comments

Framework & Control Coverage New

ISO clause findings heatmap · open rate per control area

Signature & Attestation Block Board

Prepared-by · Reviewed-by · Approved-by sign-off with date fields · report metadata

Version History & Audit Trail

Report revision log · generation metadata

Disclaimer & Limitations Notice

Standard liability disclaimer required for regulatory submissions

Action Description *

Linked Audit (optional)

Select the audit this finding belongs to

Owner * (mandatory)

Due Date *

Remediation target date

Recommendation & Required Action *

Be specific — this appears in the audit report and drives remediation tracking

Likelihood (1–5)

1=Rare → 5=Almost Certain

Impact (1–5)

1=Negligible → 5=Catastrophic

Control Effectiveness (%)

New Risk Assessment

Configure assessment scope, categories, and ownership

Assessment Categories * (select one or more)

Icon Class (FontAwesome)

Guidance / Evaluation Criteria

Applicable Frameworks

Default Likelihood Hint (1-5)

Default Impact Hint (1-5)

Reviewer (1st approval)

Final Approver (2nd & final approval)

Approval flow: Reviewer must approve first, then Final Approver gives the final sign-off.

Alert / Reminder Date

Frameworks (select one or more)

Select frameworks…

Tags (comma-separated)

Policy Document *

Click to upload PDF or DOCX

Max 20MB

Rejecting:

This will return the policy to Draft status. The policy owner will need to revise and resubmit.

Rejection Reason *

Your Command Center
for GRC Excellence

Welcome back

Two-Factor Auth

Set Up Authenticator

Your Command Centerfor GRC Excellence

Welcome back

Two-Factor Auth

Set Up Authenticator

Create Audit

Delete Audit

Register New Risk

Enterprise Risk Register — Report Export

Enterprise Audit Management — Report Export

Add Mitigation Action

Log Finding

Promote Finding to Risk Register

Manage 2FA

Add Team Member

Manage Roles & Departments

New Risk Assessment

Submit for Review

Add Custom Category

Add Custom Question

Create Policy

Upload New Version

Reject Stage

Your Command Center
for GRC Excellence