How to Implement NIST CSF 2.0 Cybersecurity Risk Management in Jira
Introduction Hey there, brave souls navigating the wild seas of cybersecurity! 🌊 If you’ve ever embarked on the treacherous journey of implementing NIST Cybersecurity Risk Management, only to end up with a mountain of spreadsheets and a profound sense of existential dread, you’re not alone. But fret not, for today, we dive into how you […]
How to Build a Living GRC System in Jira and Confluence
Welcome to the wondrous world of GRC! Don’t worry, you’re not alone if GRC sounds like a magic spell from “Harry Potter.” For most of us, Governance, Risk, and Compliance (GRC) is one of those terms that sounds important in meetings, like when someone mentions “synergy.” But the truth is, GRC means different things in […]
Why Your Risk Register Fails and the Jira Fix for It
If your risk register lives in a spreadsheet, chances are it’s already failing you – even if it looks fine. It was probably created with great intentions at a project kickoff meeting as something every good project manager should do. It might even get reviewed once a quarter (on a good quarter). And yet, risks […]
Achieving CE Mark Faster: Amiko’s Story of Agile Compliance with a Confluence-Based Document Management System
We recently sat down with Elisa Lo Blanco, Quality Assurance and Regulatory Affairs Manager at Amiko, a digital health company focused on chronic respiratory conditions, to discuss their journey to achieving CE marking under the Medical Device Regulation (MDR). Amiko’s success highlights how MedTech startups can balance the need for regulatory rigor with the flexibility […]
7 Key Tips for AI Tool Developers in Regulated Industries
If you’re an Atlassian Marketplace app vendor or you’re exploring how to bring AI capabilities like Rovo into your products and services, this article is for you. AI is no longer optional – and neither is compliance. What used to be the domain of a few highly regulated sectors like medical devices, pharma, or aerospace […]
Stop Juggling Spreadsheets! Build Your ISO 27001 or SOC 2 ISMS Right Inside Jira and Confluence
Is your organization struggling to keep up with crucial information security (InfoSec) management requirements? Today, every company faces a constant stream of threats, from ransomware and phishing to third-party vulnerabilities. In response, an increasing number of companies are standardizing their InfoSec efforts by following frameworks like ISO 27001 or SOC 2. These standards demand a […]
Why Medical Device Startups Need Electronic Document Management Systems (And How to Build One in Confluence)
If you’re developing a medical device, you must prove that it is safe and effective. That proof lives in your documents: your procedures, design records, risk assessments, and test reports. Managing those documents properly is called “document control”. At first, this might sound like an administrative detail — a few folders, some version naming, maybe […]
Why Document Control Can Make or Break Your Regulated Business (and how SoftComply can help)
Picture this: You have just finished writing your requirements specification and saved it as “Requirements_final.doc” Then come the edits, code reviews, and compliance feedback. Suddenly you’re looking at three files: “Requirements_final_v2.doc”, “Requirements_final_really_final.doc”, and “Requirements_fixed_final.doc”. Which one’s actually the final one? You send one to the team, but they build from another. Suddenly, the project’s out […]
Inside the 4th Compliance Alliance Workshop: Building Trust and Compliance on Atlassian Cloud
During Atlassian Team25 Europe, the Compliance Alliance hosted the 4th Compliance Workshop in Barcelona. Despite a wild thunderstorm, nearly 30 compliance enthusiasts braved the rain to join the workshop – a session packed with insights on AI in regulated industries, Atlassian Isolated Cloud, Cybersecurity of Marketplace Cloud apps, and selling must-have compliance solutions to Atlassian […]
How to Set Up RAID Project Management in Jira: A Complete Guide
Project managers know that uncertainty is the enemy of successful delivery. You’ve got potential risks lurking around every corner, assumptions that might prove wrong, current issues demanding attention and dependencies that could slip at any moment. This is where RAID comes in (and no, I’m not talking about the data storage kind). Watch the full […]
