Video: Workflows within the J1 Compliance App

March 10, 2021
by
George Tang

Compliance Workflows make it possible to collaborate internally with your team members or externally with your auditors. George Tang shows how to use the pre-built statuses to mark the status of each control. You can use the status reports for internal and external audits from directly within the JupiterOne compliance app.

The second workflow shown is how to set ongoing review configurations for entire compliance framework, including setting the frequency or cadence you desire for reviewing the framework. This also allows the owners to be notified as part of the review frequency, with automated reminders to review the framework.

Review frequency can be set at the section level. As an example, SOC2 Common Criteria 1.1 can be set to use the same review configuration for the section. The same type of configuration can be set at the Control or Requirement level.

These two workflows within the UI will facilitate effective and efficient collaboration both internally with your teammates and externally with auditors.

 

 

Additional Resources:

  • Video: Managing GRC with JupiterOne
  • Video: Evidence Collection with the Compliance App
  • Community Video Gallery and Downloadable Resources
  • Setup your free J1 Environment
George Tang
George Tang

I possess extensive senior information security leadership experience from serving hundreds of clients by assessing, designing, and implementing security + enterprise risk management programs. I assess + advise companies (from Fortune 5 to pre-seed startups) on their businesses', products', and environments’ security architectures. Additionally, I own a rare blend of technical subject matter expertise within the cloud technology space across the major hyperscale cloud service providers, i.e., AWS, Azure, GCP, specifically within the infrastructure security domain. Background: information security, cloud security, cyber security, governance/risk/compliance, assessments + advisory, risk management/risk assessment.

More blog posts by
George Tang

Keep Reading

What Is Continuous Controls Monitoring? | JupiterOne
June 2, 2026
Blog
The Compliance Industry Automated the Wrong Thing

Evidence collection got faster. Control effectiveness stayed invisible. Continuous controls monitoring fixes the actual problem.

DORA Is a Graph Problem. Most Firms Are Trying to Solve It With a List | JupiterOne
May 29, 2026
Blog
DORA Is a Graph Problem. Most Firms Are Trying to Solve It With a List

DORA demands continuous visibility and dependency mapping that GRC tools, CMDBs, and spreadsheets can't deliver. See why a graph-native approach works.

The Vulnerability Management Industrial Complex | JupiterOne
May 13, 2026
Blog
The Vulnerability Management Industrial Complex

In 2020, average time to remediate a vulnerability was 171 days. Today it's 252 — and AI just collapsed time-to-exploit to nine hours. A long-form argument that the V

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

Product

Platform
AI Attack Surface Management
Unified Vulnerability Management
Continuous Controls Monitoring
Integrations

Community

Community
Support
Questions library
Documentation

Resources

Resources
Case studies
Blog
Books & reports
Events

Legal

Legal & Security
Terms of Use
Privacy Policy

Company

Company
Contact
Careers
Press kit
Partners

Copyright © JupiterOne 2026. All rights reserved.