Lockpath keeps data secure with new hybrid cloud GRC offering in Keylight 3.5

Customers can now manage third-party relationships through the cloud to protect their networks using secure, efficient, scalable solution

Published on October 28, 2013

OVERLAND PARK, KANSAS — Lockpath, a provider of innovative governance, risk management and compliance (GRC) solutions today announced the release of Vendor Manager Hybrid as part of Keylight™ 3.5, the latest version of its flagship product. The offering expands Vendor Manager’s existing capabilities by allowing third parties to submit audit-related questionnaires through a web-based portal, bypassing the assessing organization’s corporate network.

“Lockpath has always helped customers manage relationships with third parties to ensure compliance,” said Chris Caldwell, CEO of Lockpath. “From law firms to financial institutions to healthcare providers, organizations must regularly work with other vendors to complete due diligence in order to meet industry standards and regulations. This new offering lets organizations keep control of their sensitive data within the enterprise, while maintaining effective interactions with outside entities.”

With data breaches in the news almost daily and IT security threats becoming more sophisticated and advanced than ever, companies must take every step possible to secure their data. Part of this layered security strategy means protecting your network from potential vulnerabilities that could unknowingly be introduced from third parties. Vendor Manager Hybrid provides a secure cloud-based environment for business associates to answer and submit questionnaires, which the assessing organization can then retrieve through their on-premise instance. This eliminates the need for third parties to access their private corporate network and keeps their data secure.

This application comes at a time when companies are increasingly turning to hybrid cloud solutions. Using Lockpath’s robust infrastructure, the new hybrid cloud offering is a cost-effective model that can scale up or down to support tens of thousands of vendors depending on demand, making it an ideal choice for organizations of all sizes.

Through new automation and survey capabilities, companies can streamline their processes and work more efficiently. Rather than sending manual surveys through emails and spreadsheets, organizations can use Vendor Manager Hybrid to automatically issue one-time and follow-up assessments and determine the recurrence of surveys. Its bulk deployment feature lets companies initiate large quantities of surveys simultaneously, while giving users the flexibility to target specific users or groups. Enhanced reporting capabilities also make it easier for organizations to identify potential enterprises risks; depending on a third-party’s response to a question, the tool can alert the surveying company that an investigation into the risk may be necessary.

The latest version of Keylight also includes a new series of connectors to enhance organizations’ overall security and risk visibility. Integrations with RedSeal, Rapid7 Nexpose and McAfee ESM will provide IT security managers with added insight into threats and vulnerabilities and help them better manage the security landscape.

Other enhancements to Keylight 3.5 include:

  • Bulk assessment capabilities: Customers can now deploy large volumes of surveys simultaneously, which is especially helpful when assessing supply chains for compliance, as in the case of conflict minerals disclosure.
  • More interactive data tools: New chart types such as Scatter indicate relative scale, helping users prioritize risks by providing more context to visual data representations.
  • Record-locking: Check-in/check-out controls assure proper version control and prevent the accidental modification of documents.
  • Expanded content library: Customers can access more IT-specific and healthcare content with new authority documents and controls from the Unified Compliance Framework.

For more information about Keylight, visit lockpath.com or call 913-601-4800.


Lockpath is a market leader in corporate governance, risk management, regulatory compliance (GRC) and information security (InfoSec) software. The company’s flexible, scalable and fully integrated suite of applications is used by organizations to automate business processes, reduce enterprise risk and demonstrate regulatory compliance to achieve audit-ready status. Lockpath serves a client base of global organizations ranging from small and midsize companies to Fortune 10 enterprises in more than 15 industries. The company is headquartered in Overland Park, Kansas.


Lockpath Media Contact
Emily Podhajsky

More Press Releases: