Media content
Key Benefits
Asset Registry & Classification
A single registry for information assets with an identifier, name, company, group, and type. Description, location, registration and deletion dates. Criticality levels for confidentiality, integrity, and availability with country-specific criteria translations.
Owners & Administrators
Assign owners and administrators to each asset; select from cabinet users by company. Asset change history (creation, editing, change of owners, administrators, and CIA levels).
Updates & Export
Asset updates by the owner or responsible persons — individually or in bulk. "No longer relevant" flag with a comment and date. Export the asset registry to Excel for reporting and processing.
Directories & Access
Asset groups and types with country-specific translations; criticality levels with CIA descriptions. Module guide with translations and AI-powered translation support. Access by user groups and companies; separate permissions for editing assets, managing types, and managing owners/administrators.
Features & Capabilities
Information Asset Registry
- List of assets with identifier, name, company, group, type, criticality
- Add, edit, and delete assets
- Asset card: description, location, registration and deletion dates, notes
- Confidentiality, integrity, and availability levels from the criticality directory
- Option to use the asset in access management
- Search and filtering; export to Excel
Asset Groups & Types
- Asset groups: name, code, abbreviation, description, display order
- Asset types within groups with country-specific translations
- Manage groups and types (add, edit, delete)
- Retrieve asset types by group for forms
Criticality Levels (CIA)
- Criticality level directory: name, code, cost (0–10), color
- Criteria descriptions for confidentiality, integrity, and availability
- Country-specific translations for names and descriptions
- Determine the maximum asset criticality from the three levels
Owners & Administrators
- Asset owners: linked to cabinet users by company
- Asset administrators: linked to cabinet users
- Add, edit, and delete owners and administrators
- Search for cabinet users when selecting an owner or administrator
- Change history: changes to owners and administrators are logged
Updates & History
- Asset update: confirm data relevance (date and user)
- Bulk update of selected assets
- "No longer relevant" flag with a comment and date
- Change history: creation, editing, change of owners/administrators, change of CIA levels
- Change details (who, when, what changed) in the asset card
Guide & Access
- Module guide for information assets with basic content
- Country-specific guide translations; AI-powered translation
- Access by user groups and company list
- Permissions: view, edit assets, manage asset types, manage owners and administrators
- Option to show the module link on the homepage
Use Cases
Organization's Information Asset Catalog
Maintain a single register of information assets: servers, databases, applications, documents. Classify assets by groups and types with country-specific translations. Assign confidentiality, integrity, and availability levels to each asset from the criticality directory. Link owners and administrators from among cabinet users. Export the registry to Excel for reporting.
Registry Updates & Maintenance
Owners or responsible persons periodically confirm the relevance of asset data (update). Bulk updates for selected assets are available. If an asset is no longer in use, mark it as "no longer relevant" with a comment. The asset card displays the change history: who and when changed the data, owners, administrators, or CIA levels.
Integration with Risk Assessment & Access Control
Asset criticality (based on CIA levels) is used in the risk assessment module to calculate risk levels. The "use in access management" option allows assets to be involved in the access control module. The asset registry provides a consistent classification for risks and access rights.
Access Restriction by Company and Role
Access to the asset registry is configured by user groups; each group is assigned a list of companies — users only see assets from those companies. Separate permissions are set for editing assets, managing asset types, and managing owners and administrators. The module link on the homepage can be hidden for groups without access.
Localization of Directories and Guide
Names and descriptions of asset groups, asset types, and criticality levels support country-specific translations — users see text in the language selected on the site. The module guide also has country-specific translations and optional AI-powered translation for quick addition of new languages.
Technical Details
Architecture
Information asset module: directories for asset groups, asset types, and criticality levels with country-specific translations. Asset registry linked to company, group, type, owners and administrators (cabinet users), CIA levels. Asset change history log. Updates and "no longer relevant" flag. Export to Excel. Guide with translations and translation API. Data is stored in the project database.
Security
Access to the asset registry is managed by user groups and a company list — users only see assets from allowed companies. Separate permissions: view, edit assets, manage types, manage owners and administrators. Permission checks when opening an asset card and when making changes. CSRF protection and input validation.
Scalability
Asset list with pagination and search; queries are optimized using eager loading of related data. Excel export is handled within a typical request. Suitable for standard project deployment.
Customization
Asset groups and types with code, abbreviation, color, and display order; criticality levels with cost (0–10) and CIA descriptions. All directories have country-specific translations. Guide with basic content and translations; optional AI-powered translation.
Frequently Asked Questions
Each information asset can have three levels: confidentiality, integrity, and availability. The levels are taken from a directory: each has a name, code, cost from 0 to 10, and criteria descriptions. The maximum of the three levels is used for display and calculations (e.g., in the risk module). The directory and descriptions support country-specific translations.
Owners and administrators are cabinet users linked to the asset. They are selected from the list of cabinet users (considering the company). The owner is responsible for the relevance of the asset's data and can perform updates. The change history records changes to owners and administrators.
An update is a confirmation that the asset's data is current. When an update is performed, the date and user are recorded. You can update a single asset or bulk update selected assets. If an asset is no longer in use, you can mark it as "no longer relevant" with a comment and date.
Yes. A change log is maintained for each asset: creation, editing, change of owners, change of administrators, change of confidentiality, integrity, or availability levels. Each entry includes the time, user, and details of the change. The history is available in the asset card.
The module provides an export of the information asset registry in Excel format. The exported data respects the user's access rights (only assets from allowed companies). The file can be used for reporting or external processing.
Access to the asset module is configured via user groups. Each group can be assigned a list of companies — then users in that group see and can only work with assets from those companies. Additional permissions are available for editing assets, managing asset types, and managing owners and administrators.
Asset criticality (based on CIA levels) is used in the risk assessment module when calculating risk levels. The asset card includes an option "use in access management" — if enabled, the asset can be involved in the access control module. Thus, the asset registry serves as a single source for classification in both risks and access.
Related Modules
Ready to Get Started?
Explore this module and enhance your organization's security posture