What is the application?
Bona Red’s Convergence is designed for US Government Contractors to meet Defense Federal Acquisition Regulation (DFAR), Federal Acquisition Regulation (FAR) and Federal Contract requirements that align with NIST 800-171 security controls for contractor IT systems.
Bona Red’s Convergence
takes a do it your-self approach that provides US Government Contractors a system to document, manage and monitor NIST 800-171 security controls that meet statutory and regulatory requirements.
Bona Red’s Convergence creates an easy process that documents how controls are implemented, manages control implementations, monitors operations and effectiveness of controls and provides reports for compliance and management.
3rd Party Validation
Bona Red’s Convergence allows for third party validation and verification of controls that helps demonstrated due diligence and system effectiveness.
Manage data from one central source.
Bona Red’s Convergence provides a user interface that allows Contractors determine what controls apply to their systems, breaks down the controls into manageable segments for documentation, provides management and tracking of problematic controls and reports the security posture of systems that aligns with requirements.
A contractor creates a company account within Convergence. The Contractor then registers Users and assigns roles for each user. Users then answer questions regarding the IT Systems and the type of data that is processed, stored and transmitted by the system(s). When the questionnaire is completed interfaces for each user role are established that simplifies, tracks, manages, monitors and reports status, key performance indicators and compliance.
How does it benefit its customers?
Bona Red’s Convergence saves time and money by simplifying the IT Security and compliance process by:
• Identifying the types of data that will reside in IT systems
• Selects necessary security controls that are applicable to IT systems
•Allows for the documentation of IT security controls
• Reports control implementation status and progress
• Manages security control issues and weaknesses
• Reports IT security metrics and key indicators
• Reports compliance status
• Eases second and third party validation and verification of IT security controls
How is it delivered?
Bona Red’s Convergence is offered as a web based application, SaaS, Software as a Service and we have the ability to offer Bona Red’s Convergence On Premises, for those who desire that ability.
The system demystifies compliance requirements
Provides systematic control documentation interface
Provides systematic control reporting
Integrates for easy Third party certification and auditing
Your files in one place.
Track your work progress.
Import and export data easily.