CiSACS

Industry Product Comparison	CS2SAT	CiSACS
Addresses Cyber Security	Yes	Yes
Addresses Pysical Security	No	Yes
Addresses Operational Security	No	Yes
Assesses Risk	Yes	Yes
Assesses Compliance	Yes	Yes
Measures Against Multiple Standards	Yes	Yes
Supports Unlimited Industry Standards	No	Yes
Supports Internal Standards	No	Yes
Performs Controls Based Assessments	Yes	Yes
Supports Vulnerability Based Assessments	No	Yes
Supports Enterprise IT	No	Yes
Customizable Asset Manager	No	Yes
Long Term Trending Analysis	No	Yes
Active Directory Integration	No	Yes
Calculates Risk Index Based on Asset Priority	No	Yes
Calculates Risk Index Based on Standards Priority	No	Yes
Interview Style Questionnaire	Yes	Yes
Technical Data Auto Collector	No	Yes
External test Data Analysis (i.e. Pentest, Red Team, etc.)	No	Yes
ISO 9001 Certified	No	Yes
ISO 27001 Certified	No	Yes
Allows Exception comments and evidence	No	Yes
Provides Mitigation Task Workflow Manager	No	Yes
Provides Continuity Knowledge Base	No	Yes
Provides BCP and DRP Assistance and Support	No	Yes
Customizable Controls and Knowledgebase	No	Yes
Customizable Vulnerability Knowledgebase	No	Yes
100% Customizable Reporting Engine	No	Yes