LockPath, a GRC solutions provider, launched two new cloud-based solutions this week. One is a whistleblower portal that enables employees to anonymously report incidents. The other is a cloud-based supply chain management application that helps companies manage relationships with third-party vendors.

LockPath's Anonymous Incident Portal (AIP) enables employees to securely and anonymously report incidents, complaints, and violations to their employer before reporting it to the Securities and Exchange Commission through a secure web portal managed by LockPath. The incident record does not include any personally identifiable information.

Whistleblowers also have the option to attach photos or documents supporting their reports, allowing companies to better manage incidents internally before they become public.

Supply Chain Application

Lockpath also announced the release of Vendor Manager Hybrid as part of Keylight 3.5, the latest version of its flagship product. Vendor Manager Hybrid provides a secure cloud-based environment for third parties to answer and submit audit-related questionnaires through a web-based portal, bypassing the corporate firewall and ultimately keeping data more secure.

The new hybrid cloud offering is a cost-effective model that can scale up or down to support tens of thousands of vendors depending on demand. Rather than sending manual surveys through e-mails and spreadsheets, organizations can use Vendor Manager Hybrid to automatically issue one-time and follow-up assessments and determine the recurrence of surveys. Its bulk deployment feature lets companies deploy large quantities of surveys simultaneously, while giving users the flexibility to target specific users or groups.

Enhanced reporting capabilities also make it easier for organizations to identify potential enterprises risks. Depending on a third-party's response to a question, the tool can alert the surveying company that an investigation into the risk may be necessary.

The latest version of Keylight also includes a new series of connectors to enhance organizations' overall security and risk visibility. Integrations with RedSeal, Rapid7 Nexpose, and McAfee ESM will provide IT security managers with added insight into threats and vulnerabilities and help them better manage the security landscape.

Record-locking controls assure proper version control and prevent the accidental modification of documents. An expanded content library also allows customers to access more IT-specific and healthcare content with new authority documents and controls from the Unified Compliance Framework.