solevant logo
Kordon logo

Kordon

by Kordon · Since 2020
No reviews yet
ActiveAvailable globallyCloud
Quick facts
VendorKordon
Year launched2020
StatusActive
LocationTallinn, EE
Countries servedGlobal
Languages10
IntegrationsN/A
Free tierN/A
Free trialN/A
Contact salesN/A

About Kordon

Kordon is a GRC platform from Kordon that helps organizations manage governance, risk, and compliance effectively. It combines risk management, asset management, vendor management, and policy management so teams can reduce audit times by 80% and improve alignment. The platform is specifically designed to overcome the limitations of traditional spreadsheets, providing a more reliable solution for GRC needs. Kordon helps organizations simplify their processes and maintain comprehensive oversight of their governance practices. Key capabilities: risk management asset management vendor management policy management business process management Best for: organizations that need a centralized solution for governance, risk, and compliance management.

Kordon is a modern, streamlined Governance, Risk, and Compliance (GRC) platform designed to eliminate spreadsheet chaos and give organizations real-time visibility into their security and compliance posture. Built for teams that want efficiency without complexity, Kordon centralizes all core GRC components—controls, risks, assets, vendors, policies, and findings—into a single, intuitive system. This helps organizations reduce audit preparation time by up to 80%, automate evidence collection, and shift from reactive compliance to continuous readiness. A standout strength of Kordon is its dynamic linkage across frameworks, risks, controls, and assets. Instead of treating GRC elements as static documents, Kordon lets teams monitor how their controls actually function in real time, providing actionable insight rather than simple documentation. The platform also supports hundreds of global standards, including ISO 27001, SOC 2, PCI DSS, NIS2, ISO 9001, and more—making it adaptable to organizations across multiple industries and maturity levels. Kordon’s feature set is extensive: automated workflows, policy lifecycle management, vendor risk controls, business process mapping, granular permissions, an open API for integrations, and the option for on-premises deployment.

Pros & Cons

Pros
  • Kordon centralises the entire security program in one platform, reducing spreadsheet dependence.
  • It provides real-time visibility into controls, risks and framework coverage.
  • Automation reduces compliance workload by up to 80 percent.
  • Auditors can access everything in read-only mode, speeding up audits.
  • Continuous evidence collection enables proactive rather than reactive compliance.
Cons
  • Initial setup may require time to centralise controls, risks and assets.
  • The platform’s depth may feel heavy for very small organisations.
  • On-premise deployment requires additional IT resources.

Features

Key features

Centralized Security Program – Consolidates all GRC activities in one platform, removing dependency on spreadsheets.
Real-Time Visibility – Shows live coverage of framework requirements and highlights next best actions for security improvement.
Automated Compliance Workflows – Reduces workload through automated evidence collection, reminders, and task assignments.
Faster, Smoother Audits – Lets auditors access required information directly in read-only mode, eliminating back-and-forth communication.
Continuous Compliance – Supports proactive compliance with automated evidence updates.
Control Management – Links controls to one or multiple frameworks and reduces duplication of effort.
Risk Management – Connects risks to dynamic controls for more accurate monitoring and mitigation.
Asset Management – Tracks assets, associated risks, and the effectiveness of security controls.
Policy Management – Handles drafting, reviews, approvals, and employee acceptance with customizable templates.
Vendor Management – Supports assessment and monitoring of vendors and their related risks.
Business Process Management – Shows how GRC activities impact core business operations.
Findings Management – Manages incidents, non-conformances, and improvements with contextual linking.
Automated Evidence Collection – Automates routine evidence tasks to reduce manual workload.
Powerful API – Enables integrations and extended automation with other systems.
Advanced Permissions – Provides flexible, role-based access and visibility across the platform.
Cloud or On-Premise Deployment – Allows organizations to choose between cloud hosting or their own infrastructure

Additional features

Control Management – Supports existing controls or templates and connects them to multiple frameworks.
Risk Management – Provides dynamic, real-time insight into risks and control effectiveness.
Asset Management – Links assets to controls and risks for end-to-end protection and monitoring.
Policy Management – Manages policy creation, review, approval, and employee acknowledgment.
Vendor Management – Tracks vendor relationships, risks, and security requirements in one place.
Business Process Management – Maps the impact of GRC initiatives on business operations.
Findings Management – Captures incidents, improvements, and non-conformances with contextual linking.
Automated Evidence Collection – Automates evidence gathering and reduces compliance workload.
API Integration – Allows automation and integration with external systems for better workflows.
Advanced Permissions – Offers granular access control for teams, stakeholders, and auditors.
On-Premise or Cloud Hosting – Provides flexible deployment based on organizational needs.
Framework Compatibility – Supports information security, privacy, safety, environmental and risk standards including ISO 27001, SOC 2, PCI DSS, NIS2, ISO 9001, and more.

Pricing

Free trial
Free version
Request a quote
Promo Offer

Monthly plans

Starter
EUR 799/mo
billed monthly

Countries & Languages

Global
Countries served
10
Interface languages
12
Billing currencies

Interface languages

EnglishSpanishFrenchGermanItalianPortugueseDutchRussianChineseJapanese

Billing currencies

🇺🇸USD🇪🇺EUR🇬🇧GBP🇯🇵JPY🇦🇺AUD🇨🇦CAD🇨🇭CHF🇨🇳CNY🇸🇪SEK🇮🇳INR🇸🇬SGD🇭🇰HKD

Reviews

No reviews yet

Be the first to drop a review

Alternatives to Kordon

Vegeel logo

Vegeel

Vegeel is a compliance and cybersecurity software/platform from Vegeel that specializes in managing critical frameworks.…

IRIS logo

IRIS

IRIS is a governance software from RiskTech & Advisory [designed for risk management and governance…

Risk Central logo

Risk Central

Risk Central is an AI-powered, low-code GRC platform designed to help organizations manage, monitor, and…

YeshID logo

YeshID

YeshID is the "Airtable of IAM"—it takes a complex, daunting IT category and makes it…

NAVEX ESG RSC logo

NAVEX ESG RSC

NAVEX ESG RSC is a compliance software platform from NAVEX Global, Inc [to assist organizations…

Key Control Dashboard logo

Key Control Dashboard

Key Control Dashboard is a GRC software from Yellowtail that supports comprehensive governance, risk, and…

Spot something wrong or outdated?

Suggest a correction — a reviewer verifies every change.

Often compared with Kordon

Compare any two tools →
Vegeel logo
Vegeel
Governance
0.0
IRIS logo
IRIS
Governance
0.0
Risk Central logo
Risk Central
and Compliance (GRC) Software
0.0
YeshID logo
YeshID
Governance
0.0