RegML SSP Author
AI-powered control implementation statement generation using RegML background processing
Overview
RegML SSP Author revolutionizes the process of creating control implementation statements by leveraging artificial intelligence to analyze your organizational documents and automatically generate contextually relevant control statements. Powered by RegML's advanced background job processing, this tool extracts pertinent information from multiple document sources and maps it to your security plan controls with unprecedented efficiency.
Key Benefits
✅ Automated Processing – Generates control implementation statements automatically from your existing documentation
✅ Multiple Source Support – Analyzes files, questionnaire responses, and organizational policies simultaneously
✅ Real-time Progress – Monitor extraction progress with live updates and detailed logging
✅ Flexible Extraction – Choose between control-level, parts-level, or combined extraction modes
✅ Background Processing – Non-blocking job execution allows continued
work while processing occurs
✅ Cost Transparency – Track hours saved and cost benefits with built-in analytics
✅ Session Persistence – Resume jobs across browser sessions and page reloads
How to Use RegML SSP Author
Step 1: Access SSP Author
-
Navigate to Modules in the top navigation bar
-
Select the Security Plan module from the menu
-
Choose your Security Plan record
-
Click the ellipsis menu (⋯) on the right side of the page
-
Select SSP Author from the dropdown menu
Step 2: Configure Extraction Settings
-
Choose Extraction Type from the dropdown:
- Controls: Extract at the security control level (default)
- Parts: Extract at control parts/sub-requirements level
- Both: Combined control and parts extraction
-
The system will automatically adjust based on your security plan's control structure
Step 3: Select Your Source Documents
Choose from three source types using the tabbed interface:
File Upload Tab:
-
Click Choose Files and select documents (PDFs, Word docs, etc.)
-
Multiple file formats supported for comprehensive analysis
Questionnaire Responses Tab:
-
Select existing questionnaire responses from your RegScale instance
-
Leverages previously captured compliance data
Policies Tab:
-
Choose organizational policies already stored in RegScale
-
Automatically maps policy content to relevant controls
Step 4: Generate Implementation Statements
- Click the Generate button to start the background job
- Monitor real-time progress with the dynamic progress bar
- View live metrics as processing occurs:
- Controls/Parts Examined: Current processing status
- # of Matches: Successfully generated statements
- % Matches: Coverage percentage of your control set
- Hours Saved: Estimated time savings from automation
- Cost Savings: Dollar value of efficiency gains
Step 5: Review and Manage Generated Statements
Once processing completes, review results in the Authored Items section:
Statement Review:
- Control Name: The security control targeted by the statement
- Control Description: Full control requirement details
- Generated Statement: AI-created implementation text (editable)
- Status Indicators: Visual confirmation of saved vs. pending statements
Statement Management:
-
Select Individual: Use checkboxes to choose specific statements
-
Select All/Deselect All: Bulk selection controls
-
Save Selected: Apply chosen statements to your security plan
-
Edit Inline: Refine statements using the built-in rich text editor
Step 6: Apply Statements to Security Plan
- Select statements you want to keep using the checkboxes
- Click Save X Statement(s) to apply them to your security plan
- Saved statements integrate directly into the control implementation section
- Visual indicators show successfully applied statements with green checkmarks
Advanced Features
Session Management:
-
Jobs persist across browser sessions via URL parameters
-
Resume interrupted processing automatically
-
Background jobs continue even when navigating away
Progress Monitoring:
-
Real-time progress updates every second
-
Comprehensive logging of all processing activities
-
Error tracking and reporting in dedicated tabs
Quality Assurance:
-
Generated statements maintain HTML formatting
-
Contextual mapping ensures relevance to specific controls
-
Integration with existing implementation options and objectives
Additional Notes
-
Processing occurs entirely in the background - no browser blocking
-
Large document sets are handled efficiently through queued processing
-
Generated statements serve as starting points for further customization
-
All statements integrate seamlessly with RegScale's compliance workflow
-
Cost analytics help demonstrate ROI of AI-assisted documentation
Updated 23 days ago