OneTrust releases Compliance Automation to optimize the compliance lifecycle

OneTrust has introduced OneTrust Compliance Automation to optimize the compliance lifecycle. Built on the same guidance, content, and proprietary shared evidence framework that allows OneTrust Certification Automation customers to reduce certification costs and accelerate the compliance process, Compliance Automation now extends these capabilities throughout the entire Trust Intelligence Platform.

As information security (InfoSec) teams are challenged with managing multiple compliance frameworks, laws, and regulations, OneTrust Compliance Automation enables organizations to deduplicate redundant activities across team members, eliminate manual work, streamline risk management, and reinforce program consistency.

“OneTrust Compliance Automation provides visibility into regulatory requirements, automates upwards of 60% of evidence collection requirements, and offers a roadmap of portfolio coverage and progress,” said Cliff Huntington, GM OneTrust GRC and Security Assurance Cloud.

“With out-of-the-box compliance framework content and guidance for more than 33 industry frameworks, Compliance Automation isn’t just a remedy for audit fatigue, it also allows InfoSec teams to go beyond compliance and focus on trust,” Huntington added.

Compliance Automation provides the blueprint for organizations to go beyond compliance management:

• Test once, comply many: OneTrust’s proprietary shared evidence framework driven by expert-vetted content seamlessly removes duplication and complexity across 33+ published frameworks and the company’s common controls.
• Stay continuously compliant with automated evidence collection: InfoSec teams can bypass manual stopgaps with ready-to-activate integrations which automate insights across the tech stack. Capture auditable data on-time and in-scope for defined control requirements with pre-architected, end-to-end collectors.
• Streamline the compliance process: Complete OneTrust’s scoping survey to automatically generate risk, controls, and evidence tasks based on identified frameworks and business operations. Centrally manage initiatives based on the company’s compliance requirements to track, collect, and monitor evidence of implemented controls across the organization.