SaltyCloud is a Public Benefit Company
Isora is the end-to-end workflow management team for conducting risk assessment questionnaires.

Assess risk and ensure compliance.

The end-to-end workflow management tool for conducting questionnaire-based risk and compliance assessments.
Isora charts.

“Isora has transformed the way UT Austin and our team measures, understands, and responds to risk. I’m not sure where the university would stand without it.”

Cam Beasley, UT Austin CISO

Leverage the workflows.

Flexible questionnaires.

Your organization is unique. Isora lets you choose from preloaded question sets, amend them, or create entirely new ones to fit your organization’s needs.
  • Chose preloaded question sets for NIST CSF, NIST 800-53, NIST 800-171, CIS 20, HIPAA, GLBA, and more.
  • Create and amend questions in-app or upload your own with CSV upload.
  • Upload legacy questions and responses through the API for continuity and historic look at risk over time.
Improve risk.

Crowdsourced assessments.

Finding the right people is difficult, let alone getting them to respond. Isora lets you assign responsibility to key individuals and send assessment reminders to achieve 100% completion.
  • Ensure assessment completion by delegating role-based permissions to key individuals.
  • Track assessment completion with the assessment progress dashboard.
  • Remind respondents of questionnaires with in-app mail merge notifications.
Understand risk.

Insightful risk reports.

Once your assessment is completed, you can digest the data and respond accordingly. Isora provides you and your respondents with relevant risk reports and remediation guidelines.
  • Understand organization-wide and department-level risk with a single risk score.
  • Quickly view overall security posture with risk maps.
  • Discover specific compliance and risk gaps with unit and category risk scores.
  • Demonstrate continuous improvements with trend graphs.

Streamline your company’s risk and compliance workflow.

Send questionnaires across your enterprise, discover risk and compliance gaps, and make improvements year-over-year.