Star Rating
Languages Supported
Pricing Options

IT Risk Management reviews by real, verified users. Find unbiased ratings on user satisfaction, features, and price based on the most reviews available anywhere.

Best IT Risk Management Software

    IT risk management software protects business data against all risks associated with the use of software and hardware. This type of software is used to identify, assess, and mitigate IT risks across all business entities of a company. IT risk management solutions also help companies ensure the security and privacy of customer or supplier data. Organizations use IT risk management to comply with governmental regulations and internal policies related to data security. This type of software is implemented by IT departments and can be used by all employees. IT risk management can be deployed as part of a broader governance, risk, and compliance system.

    IT risk management systems need to consolidate data from multiple sources and integrate with solutions for IT infrastructure, IT management, and security. When deployed as a standalone product, IT risk management software integrates with governance, risk, and compliance software and other risk management software.

    To qualify for inclusion in the IT Risk Management category, a product must:

    Provide tools to identify, assess, and classify IT risks
    Deliver scoring and ranking methods to track risk severity
    Include standard templates for audits and other IT risk processes
    Provide workflows to manage IT risk plans and tasks
    Create IT risk tests such as vulnerability and penetration
    Monitor the performance of the IT risk management activities
    Include reports and documents for compliance purposes

    Top 10 IT Risk Management Software

    • LogicGate Risk Cloud
    • SecurityScorecard
    • Fastpath Assure
    • WipeDrive
    • Apptega
    • SAI360
    • Oracle ERP Cloud
    • SureCloud
    • CIMCON Software
    • Strongpoint

    Compare IT Risk Management Software

    G2 takes pride in showing unbiased reviews on user satisfaction in our ratings and reports. We do not allow paid placements in any of our ratings, rankings, or reports. Learn about our scoring methodologies.
    Sort By:
    Results: 99
    View Grid®
    Adv. Filters
    (81)4.6 out of 5
    Optimized for quick response

    Welcome to The LogicGate Risk Cloud. The LogicGate Risk Cloud™ is an end-to-end suite of applications that blend flexibility and out-of-the-box functionality to aggregate, manage, and mitigate the entire landscape of risk within an organization. Equipped with a quantitative understanding of their organization’s risk posture, business leaders can supercharge their risk programs and take on smarter risks and opportunities.

    (27)4.5 out of 5

    SecurityScorecard is the global leader in cybersecurity ratings and the only service with over a million companies continuously rated. SecurityScorecard’s patented rating technology is used by over 1,000 organizations for self-monitoring, third-party risk management, board reporting and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their externally facing digital footprint. SecurityScorecard is the only pr

    (39)4.6 out of 5
    Optimized for quick response

    The Fastpath Assure suite is a cloud-based audit platform that can track, review, approve and mitigate access risks across multiple systems from a single dashboard. The suite comes with a pre-configured segregation of duties rule set specific to each ERP, and works across a variety of ERP/CRM systems, including Microsoft Dynamics, NetSuite, SAP, Oracle, Sage Intacct, and Acumatica. Access Reviews Using Fastpath Assure, clients can easily report what access users have, run reports, and record si

    (21)4.7 out of 5

    WhiteCanyon Software has been providing data erasure software since 1998. WipeDrive is their flagship drive sanitization solution. WipeDrive is implemented by 80% of the Fortune 500 for end of life erasure of IT assets. WipeDrive and WipeDrive Mobile securely erase multiple IT assets simultaneously and provide a certified wipe report for each drive. The software is certified by Common Criteria, ADISA, NCSC, and many others.

    (19)4.6 out of 5

    Cybersecurity and Compliance Made Easy... Apptega helps businesses of all sizes accelerate and automate compliance efforts, monitor program performance, and always be audit-ready—all while fortifying your cybersecurity. Choose your frameworks, including PCI, SOC 2, NIST, ISO, CIS v7, GDPR, HIPAA, CCPA and more, and manage your program with: -Automated Cybersecurity Framework Crosswalks -Real-Time Compliance Scoring -Project Management -Workflow & Task Management -Collaboration -Budgeting -P

    (80)4.0 out of 5
    Optimized for quick response

    SAI Global Risk, Ethics and Compliance empowers customers to focus on developing an effective integrated risk management solution with a combination of software and learning content. Together, with our expertise, organizations can build and foster a strong risk and compliance culture, integrate risk management business process and strengthen organizational ethics and employee behavior. SAI Global is a recognized leading provider of integrated risk management solutions. We help organizations pro

    (41)4.2 out of 5
    Optimized for quick response

    Use Oracle Risk Management (Oracle GRC Cloud) with embedded artificial intelligence (AI) techniques to automate advanced analysis for ERP role design, segregation of duties (SOX), data privacy (GDPR), and preventing financial fraud.

    (18)4.4 out of 5
    Optimized for quick response

    SureCloud provides Gartner recognized Governance, Risk and Compliance (GRC) software and Cybersecurity & Risk Advisory services. Whether buying products or services, your organization will benefit from automated workflows and insight from the award-winning SureCloud platform. SureCloud’s service offerings are fully compatible with the GRC suite of products, enabling a seamless integration of information, taking your risk programs to the next level.

    (19)4.7 out of 5

    CIMCON Software is the leading provider of Model risk and EUC risk management software. Our solutions help to minimize the likelihood of errors and sensitive data loss in end-user controlled applications (EUC or UDA). This includes Excel spreadsheets, Access databases and other modeling tools. CIMCON Software has been consistently recognized as the industry standard in end-user controlled computing risk management & compliance, helping hundreds of the world’s largest organizations.

    (13)4.5 out of 5
    Optimized for quick response
    Entry Level Price:Free for 90 days

    Strongpoint is the only fully native solution for managing change and compliance in your NetSuite account or Salesforce Org. Our products start by producing accurate, up-to-date documentation of all customizations in your system — and the connections between them. From there, a suite of sophisticated tools and pre-built controls helps you manage risk, save time and increase confidence in your critical enterprise systems. What Can You Do With Strongpoint? — Get SOX-compliant reporting in as

    (15)4.5 out of 5

    ERP Maestro makes managing access risk, compliance, and security in SAP® environments incredibly easy. Its award-winning software as a service (SaaS) platform automates the monitoring, detection, and prevention of internal cybersecurity risks in SAP systems, minimizing potential breaches and fraud and accelerating remediation. Its industry-leading segregation of duties (SoD) analysis is used by seven of the world's top 10 audit firms and empowers organizations to establish effective governance,

    (24)4.4 out of 5
    Optimized for quick response

    Make the right business decisions, redefine the way your organization pursues opportunity and manages risk with Camms.Risk. Camms.Risk is an industry-recognized, flexible and easy to use software solution that offers rapid time to value and provides a comprehensive integrated approach to governance, risk and compliance. Camms work with organisations across multiple sectors on both a global and a local level, with our customers including: Menzies LLP, Royal Air Force, Shell, Johnson Matthey, Ro

    (14)4.4 out of 5
    Optimized for quick response

    Resolver helps the world's leading organizations reduce the frequency and severity of negative events. Risk, security and resilience professionals use our software solutions to provide actionable insights and control operational costs.

    (6)4.2 out of 5
    Entry Level Price:$1,163 1 user/yr

    @RISK (pronounced “at risk”) is an add-in to Microsoft Excel that lets you analyze risk using Monte Carlo simulation. @RISK shows you virtually all possible outcomes for any situation—and tells you how likely they are to occur. This means you can judge which risks to take on and which ones to avoid—critical insight in today’s uncertain world.

    (17)4.6 out of 5

    TokenEx is an enterprise-class tokenization platform that offers virtually unlimited flexibility in how customers can access, store and secure data. TokenEx works with multiple data-acceptance channels while maintaining a processor-agnostic approach, meaning we can tokenize and secure almost any data type – including PCI, PII, PHI and even unstructured data formats – and integrate with nearly any processor or endpoint.

    (5)4.6 out of 5

    Lime Software puts your business back in control of your Oracle Licensing. Helping you understand your compliance position, manage your risks and maintain accurate reporting of actual usage of all Oracle Technology . Lime does not require any infrastructure to deploy, no middleware or databases are required. Inventory turn around in days not months (Zero Footprint)

    (10)4.8 out of 5

    SecurityStudio offers solutions to secure information for your organization, your employees, your vendors and yourself. Modern products for risk, compliance and security leaders to better protect critical information.

    (5)4.5 out of 5

    The Apparity platform is designed to address mandates including Section 404 of Sarbanes, financial model risk management, Basel III, and End User Computing (EUC) governance and controls, while allowing the user community to continue to work in native Microsoft Excel. Operational risk is mitigated through key controls that evidence, monitor and manage change in important spreadsheets. Apparity enables finance and internal audit teams to seamlessly prepare for external audits and immediately adap

    (4)3.1 out of 5

    Azure Policy is a service in Azure, that you use to create, assign and, manage policy definitions in your Azure environment.

    NetApp Infrastructure Assessment is powered by award-winning, industry-leading, enterprise-class productsnot scripts and proprietary tools. Performed remotely and securely to minimize your time and effort. Reviewed by an independent third party with positive customer reviews. Complimentary and quickat no cost to you

    (13)4.9 out of 5

    Located in the heart of the Silicon Slopes in Utah, Whistic is a leading provider of proactive vendor security and an innovator in changing the way that companies publish and evaluate security posture to build trust. If you're a buyer who needs to assess your vendors, Whistic provides the tools to modernize and automate your approach to security risk management. If you're a seller, Whistic lets you transform questionnaire data, audits, and certifications into a living security profile that you

    (3)4.5 out of 5

    With all-in-one scanning, reporting, and built-in issues resolution, AvePoint Compliance Guardian proactively monitors and neutralizes violations of privacy, security, and compliance to help you mitigate risk from the moment data is created, throughout its entire lifecycle. Bring automation to your privacy and security programs across your enterprise content—whether they live on-premises or in cloud environments. Satisfy internal or external requirements and standards, such as ISO or GDPR, for i

    (21)5.0 out of 5
    Optimized for quick response

    The short answer is that Onspring is an award-winning process automation platform that delivers intuitive business automation & real-time reporting through flexible, no-code, cloud-based software. Onspring’s automation is made for those looking to improve business operations with thoughtful, scalable solutions for roles, like governance, risk, compliance, audit, and vendors, that are aligned with their enterprise goals. The better question here is “Who is Onspring?” Simply put, Onspring bel

    (3)5.0 out of 5

    Verba offers a complete collaboration recording solution for Cisco UC and Skype for Business.

    (16)3.7 out of 5

    RSA Archer, you can manage risks, demonstrate compliance, and automate business processes.

    (3)4.5 out of 5

    Blueprint’s Enterprise Automation Suite is a powerful cloud-based platform that acts as your business process command center, providing a centralized and collaborative place to design, optimize, connect, manage, and store all of the critical information related to how you run your business today, and how you intend to continuously optimize for tomorrow. Using our unique process capture, modeling, documentation, tracing, planning, and RPA acceleration capabilities, you can collaboratively improv

    (1)5.0 out of 5

    The volume and variety of today’s electronic communications is causing financial firms to struggle to meet their supervisory obligations. It is critical for firms to have the right supervision solution in place in order to stay compliant. With the Supervision App, regulatory requirements can be met effectively and risk managed for all electronic communications retained in the Connected Archive.

    (1)5.0 out of 5

    Tectia SSH is the leading mature, commercial SSH client and server solution, backed by SSH.COM, the world's foremost experts in Secure Shell technologies.

    (1)5.0 out of 5

    WolfPAC's online suite of enterprise risk assessment tools and risk management plans incorporate risks into a single, integrated solution.

    0 ratings

    Aegify RSC Suite provides support to healthcare, retail and financial organizations with Risk, Security and Compliance Management

    Select Grid® View
    Select Company Size
    G2 Grid® for IT Risk Management
    Filter Grid®
    Filter Grid®
    Select Grid® View
    Select Company Size
    Check out the G2 Grid® for the top IT Risk Management Software products. G2 scores products and sellers based on reviews gathered from our user community, as well as data aggregated from online sources and social networks. Together, these scores are mapped on our proprietary G2 Grid®, which you can use to compare products, streamline the buying process, and quickly identify the best products based on the experiences of your peers.
    High Performers
    Fastpath Assure
    LogicGate Risk Cloud
    ERP Maestro
    CIMCON Software
    Oracle ERP Cloud
    Market Presence