Portal modules
Solutions that follow your needs and grow with your business.
| Name | Type | Location | Asset groups | Created | Actions |
|---|---|---|---|---|---|
| Employment contract 2022-07Ana Kovač | Document | Office 1 | ContractsInternal | 16. 02. 2026 | CopyDelete |
| 3D printer | Equipment | Celovška 1 | — | 12. 02. 2026 | CopyDelete |
| Mobile phoneFor main office | Equipment | Main office | — | 12. 02. 2026 | CopyDelete |
| Miha Oblak[email protected] | User | Office 3 | — | 12. 02. 2026 | CopyDelete |
| Contract 2026-02-10 ⚠Miha Oblak | Document | Office 3 | Contracts | 12. 02. 2026 | CopyDelete |
| PostgreSQLDatabase | Licence | — | — | 11. 02. 2026 | CopyDelete |
| Adobe Creative Cloud ⚠Yearly licence | Licence | — | — | 11. 02. 2026 | CopyDelete |
Blue Octopus is a comprehensive information management platform that enables companies to efficiently manage assets, perform business analytics, and ensure compliance with regulations (NIS2, ISO 27001, ISO 9001) all in one place.
Management of assets
Asset management
A fully customizable information asset registry with supported filtering, criticality classification, and hierarchical dependencies.
Customizable asset types and their associated attributes
Asset ownership and hierarchical linking
Asset classification by its criticality
Data import/export
Grouping assets
Organizing assets into logical groups for faster management and collective risk assessment.
Any number of groups for each individual asset
Risk assessment based on asset groups
Fast asset assignment
Connecting assets
A visual representation of all assets and their interconnections for a clear understanding of complex information environments.
Interactive graphical representation of asset connections
Overview of dependencies among all assets or a specific asset
Regulatory register
Compliance register
Advanced compliance management with legislation and international standards. Import requirements, evaluate their criteria, and track evidence for each standard individually.
Import of supported standards
Creating custom compliance requirements
Linking controls to evidence
Supported dependencies between controls of different compliance standards
Exporting registry data in various formats (SoA, control compliance status, etc.)
SUPPORTED STANDARDS
NIS-2
ISO 27001
ISO 9001
CUSTOM
A wide range of business analytics
PESTLE analysis
Monitoring external factors that impact your business for timely identification of opportunities and environmental risks
Structured analysis of political, economic, social, technological, environmental, and legal factors all in one place.
Automatic transfer of critical factors into SWOT analysis
Export data from the analysis
SWOT analysis
Linking internal factors and external influences to provide a clear foundation for strategic decisions.
A structured overview of strengths, weaknesses, opportunities, and threats.
Automatic transfer of factors from PESTLE analysis
Automatic transfer of critical weaknesses and threats into risk analysis
Export data from the analysis
Risk analysis
Systematic assessment and management of business risks.
Visual overview of risks based on severity and likelihood of occurrence
Adjusting thresholds between different risk levels according to business needs
Separate evaluation of initial and residual risk with specific mitigation measures
Linking risks to processes
Export data from the analysis
SEPARATE RISK ANALYSIS FOR INDIVIDUAL ASSETS
| Name | Regulative | Probability | Score | Mitigation | |
|---|---|---|---|---|---|
| LAW | INTERNAL | ||||
| Complex access procedure Users face difficulties obtaining access | 3 | 2 | 3 | 9 | |
| Changes in IT regulations Continuous adjustments. | 3 | 3 | 4 | 12 | |
BIA analysis
Assessment of the impacts of potential disruptions on key business functions and processes.
Business continuity support
Linking services to processes
Defining RTO/RPO values for individual processes, services, and assets within a process.
Adding alternative procedures to a process
Operational monitoring
Processes
Business process registry with tracking of responsibilities, inputs/outputs, and advanced management of key performance indicators.
Defining processes from their inputs to outputs
Measuring KPIs and notifying about upcoming and missed KPIs
Defining RTO/RPO values for individual processes and adding services to the process
Documented information
Management of all key documents and records of the information security system in accordance with requirements.
Organizing folders for a structured arrangement of documented information
Storing audit and other evidence in appropriate folders
Linking folders to the relevant functionalities supported on the platform
Good traceability and audit readiness
Information overview and reporting
Quick insight into the platform’s key data and easy preparation of reports for analysis, reporting, and audits.
Dashboard
Clearly consolidated key data and indicators from the platform for immediate insight into the system’s status.
Graphical representation of key data
Display of upcoming and missed events
Quick guides for the platform
Export of reports
Export of key information collected on the platform for internal use or as evidence of compliance with requirements.
Quick export of data and records from various platform functionalities in report format
Structured and clear reports suitable for audits
Export of compliance evidence
Unlimited flexibility
Customize the structure of assets, their attributes, and system integrations to your organization’s needs.
Locations
Management of locations and sub-locations for organizational structuring of assets.
Asset types
In addition to predefined asset types, creating custom types is supported, with the option to select mandatory and optional attributes for each asset type.
Asset properties
Creating asset attributes tailored to your company’s needs, with various data types (e.g., text, date, dropdown, etc.).
API keys
Management of API keys for integration with external systems and tools.