Start Here

Not sure how to start? Watch this introductory video

Install & Configuration

Follow these guides to install and configure eramba


Once you download eramba use this guide to install eramba.

Virtual Machine

If you are not interested in installing eramba you can use our VMs


Follow our configuration guides in detail to make sure the system works well.

Basic features and concepts

These guides cover basic features and concepts used across the system, is really important you get familiarised with them before you start using eramba!

CSV Imports

Import controls, policies and more using preformated CSV files.


Search, export and report over email data from eramba.


Automate email notifications, reports, reminders and more.


eramba users will only see stuff that relates to them!.


Soon to be implemented!


Keep track of changes (and restore anytime) on every control, risk or object.


Include custom fields on any of our forms (while creating a risk, control, etc).


APIs can be used to push, pull or list elements from eramba.

Core Functionalities

Make sure you start with our controls, policies and exceptions guides before you attempt Risk or Compliance!

Controls & Audits

Register your internal controls, their internal audits, where they are used.

Policy Management

Document your policies, ensure they get review, publish them on a single portal, Etc.

Exception Management

Keep record of every approval you give away and trigger notifications when they expire.

Compliance Management

NIST, ISO, PCI - link controls and policies to your compliance requirements. Make sure you have read our controls and policies guides before you start here!

Data Flow Analysis

Identify your assets and analyse what controls, policies, Risks, owners and more apply to them on each stage of their lifecycle.

Risk Management

Simplify Risk Management and its reviews to ensure it brings real value to your organisation. Make sure you have read our controls and policies guides before you start here!

Incident Management

Record and manage your incidents and asociate them with Risks when possible.

Standalone Features

These features do not hold dependencies with other modules so you can use them straight away

Security Awareness

Create multiple, Active Directory related awareness trainings with videos, multiple choices and more.

Vendor Assessments

Upload your questions and send them out so your suppliers can log in remotely and provide feedback.

Automated Account Reviews

Automate the process of reviewing user and roles accounts.


These documents will help you understand how eramba works in certain use cases

ISO 27001 Guide

Quick introduction on how eramba can help you with the popular ISO standard


Discover how eramba helps with PCI-DSS

Controls & Policies Templates

Ready to import controls and polices for Compliance Management.

Sarbanes Oxley Guide

Large companies subject to SOX have successfully used eramba to mantain their compliance requirements, learn how.