Scrut innovations: April 2025 snapshot
April brings one of the most exciting rounds of updates at Scrut this year, with major milestones like the launch of Scrut Teammates our AI-powered GRC teammate. From faster platform performance to powerful new integrations, this month's updates are all about making your compliance workflows smarter, faster, and more connected than ever.
- Scrut Teammates An intelligent, AI-powered GRC teammate
- Authentication upgraded to Auth0 for enhanced security
- Faster performance and loading speed across the platform
- New updates to the frameworks library New Jersey DPL, CMMC, and Australia ISM
Scrut Teammates: An intelligent, AI-powered GRC teammate
Scrut Teammates is a system of vertical AI agents designed specifically to understand an organization's GRC needs. It works alongside the GRC or security team eliminating compliance busywork, prioritizing real risk, and streamlining collaboration.
At its core, Scrut Teammates is powered by these building blocks:
- Proprietary knowledge graph: A proprietary knowledge graph that connects your policies, controls, risks, and assets into a unified, searchable system.
- System of agents: A coordinated system of specialized AI agents each focused on a specific compliance domain, orchestrated by a supervisor agent ensures accurate and context-aware actions.
- Trained on real-world data: These agents are trained on thousands of real-world compliance scenarios and best practices curated by Scrut's in-house security experts, enabling it to handle real-world challenges with practical intelligence.
Get expert recommendations with automated task resolution
Scrut Teammates doesn't just tell you what to do it helps you get it done. It gives you expert, tailored recommendations based on your current compliance posture, then takes it a step further by creating detailed tickets, assigning them to the right owners, and tracking progress for you all within Scrut.
Smarter vendor risk management, faster decisions
Scrut Teammates removes the manual effort from third-party risk management. It evaluates a vendor's inherent risk based on service criticality and public security data, then builds tailored questionnaires to ensure you're asking the right questions. Once responses come in, it analyzes them, flags risks, and suggests mitigation steps helping you complete due diligence faster and with more confidence.
Intelligent prioritization and remediation of cloud tests
Scrut Teammates automatically tracks failed cloud tests across your environment and intelligently prioritizes them based on your audit frameworks, control severity, and risk posture. Instead of leaving you to figure out next steps, it suggests precise remediations from configuration updates to infrastructure-as-code snippets with pre-filled variables.
Search shortcut for easy access
Scrut Teammates makes finding the right compliance data simple just hit Cmd/Ctrl + K to search across your risks, controls, policies, evidence, and vendor assessments. Instead of only scanning filenames, Scrut Teammates can search for the right context, helping you surface exactly what you need, even when the answer is buried deep inside a file.
Respond to security questionnaires, faster
Scrut Teammates makes responding to security questionnaires a breeze by intelligently auto-filling answers wherever you receive them including formats like CSV, Excel sheets, editable PDFs, and even through a Chrome extension. It pulls information from existing materials on the Scrut Platform, such as vault docs, policies, past responses, and more. It also maintains an editable centralized answer library so you can edit and maintain up-to-date answers.
Want a live demo on how Scrut Teammates takes the mental grunt work out of compliance and acts as your always-on assistant? Book a demo with us to see it in action or reach out to your CSM.
Authentication system migration for enhanced security and smoother login
We've upgraded Scrut's authentication system to Auth0, a leading identity management platform that delivers stronger security, cleaner login pages, and a faster user experience.
Here's what's new:
- Enhanced security: Auth0's advanced threat protection offers stronger defense against unauthorized access.
- Dynamic login pages: All your integrated SSO options in one place.
- Smoother experience: Enterprise users get a faster and more intuitive login flow.
- No changes for non-SSO users: Several login measures via Email (OTP), Google, or Microsoft available.
- Action required for Enterprise SSO users: Please add the following redirect URL to your OIDC configuration (in addition to existing URLs):
https://scrut.eu.auth0.com/login/callback
Faster platform performance and seamless navigation
We've rebuilt Scrut's backend APIs to deliver a quicker and smoother experience, eliminating full-page refreshes and reducing loading times across the platform.
- Improved productivity and faster navigation: Move between modules with minimal loading times.
- Smoother workflows: Perform multiple actions with intuitive UI updates factored in.
Looking for custom integrations? Please let us know what you need by filling out this form we're continually expanding our integration library to support your workflows better.
Framework updates
This month, we've updated one of our existing frameworks in the Scrut Library to reflect the latest regulatory changes, making it even easier for you to stay compliant without adding complexity. Here's what's new:
- New Jersey Data Privacy Law (NJDPL): This newly added framework helps businesses comply with New Jersey's comprehensive data protection regulation. With pre-mapped controls aligned to consent management, user rights, and data security, organizations can streamline privacy operations, reduce manual effort, and strengthen customer trust.
- Australia ISM (Updated Mapping): We've updated the Australia Information Security Manual (ISM) framework in the Scrut Library to reflect the latest December 2024 release. As part of this update, the only change is that the number of required policies has been optimized from 39 to 37.
- CMMC Level 2 (Updated Mapping): We've updated our mapping to the latest CMMC Level 2 requirements. Control coverage has increased from 126 to 145, with updates to evidence and policy requirements to align more closely with assessment expectations making it easier to maintain complete and audit-ready documentation.
Want to see what else is new? Explore Scrut's full framework library or connect with your Customer Success Manager for customized framework support.
For expert tips and updates, subscribe to our newsletter, GRC Wire your go-to source for practical Governance, Compliance, and Risk insights.
Ready to see what security-first GRC really looks like?
Ready to see what security-first GRC really looks like?
Ready to see what security-first GRC really looks like?
See what a real security- first GRC platform looks like
Ready to see what security-first GRC really looks like?
Focus on the traveler experience. We’ll handle the regulations.
Get Scrut. Achieve and maintain compliance without the busywork.
Choose risk-first compliance that’s always on, built for you, and never in your way.
Ready to see what security-first GRC
One platform, every framework. No more duplicate work.
You can’t manage user access if you’re always playing catch-up.
Explore the future of enterprise GRC
Tired of chasing vendors for risk assessments?
Join the thousands of companies automating their compliance with Scrut.
The right partner makes all the difference. Let’s grow together.
Make your business easy to trust, put security transparency front and center.
Risk-first security starts with risk-first visibility.
Secure your team from the inside out.
Don't settle for slow, expensive compliance. Get Scrut instead.
Risk-first compliance for forward-thinking teams.
Audits without the back-and-forth. Just seamless collaboration.
Scale fast. Stay compliant. Automate the rest.
Compliance? Done and dusted, in half the time.
Get ahead of GDPR compliance before it becomes a problem.
Outgrowing table-stakes compliance? Create custom frameworks with ease.
Navigate SOC 2 compliance, minus the stress.
PCI DSS compliance, minus the panic.
Take the wheel of your HIPAA certification journey today.
We’ve got what you need to fast-track your ISO 27001 certification.
Make your NIST AI RMF journey as smooth as possible.
Your GRC team, multiplied and AI-backed.
Modern compliance for the evolving education landscape.
Ready to simplify healthcare compliance?
Don’t let compliance turn into a bottleneck in your SaaS growth.
Find the right compliance frameworks for your business in minutes
Ready to see what security-first GRC really looks like?
Real-time visibility into every asset
Ready to simplify fintech compliance?
The Scrut Platform helps you move fast, stay compliant, and build securely from the start.
Scrut helps you set up a security program that scales with your business and stands up to audits. Without last-minute chaos.
Scrut helps you streamline audits, close deals faster, and stay ahead of risk without slowing down your team. Because trust shouldn’t take months to earn.
Scrut helps you set up a security program that scales with your business and stands up to audits. Without last-minute chaos.
Tag, classify, and monitor assets in real time—without the manual overhead.
Whether you're entering new markets or launching new products, Scrut helps you stay compliant without slowing down.
Scrut pulls compliance data straight from the tools you already use—so you don’t have to dig for evidence, chase approvals, or manually track controls.
Less manual work, more customizability. The Scrut Platform gives you everything you need to align your compliance to your business’s priorities.
With Scrut, you’re not just adding a tool to your offering—you’re adding a competitive edge. Join our Partner Network and help your clients streamline their GRC program.
Gaining trust is your first step to growing and cracking better deals. The Scrut Platform comes pre-built with all the tools you need to showcase a firm security posture and build confidence.
Don’t settle for rigid systems—Scrut ensures your risk management strategy is as flexible as your business needs.
Start building a security-first culture. Save your operations from improper training and a lack of compliance awareness.
Scrut fast-tracks compliance so you can focus on scaling, not scrambling. Automate compliance tasks and accelerate enterprise deals—without the grind.
Automate assessments, track compliance, and get full visibility into third-party risk—all in one place.
Scrut automates compliance tasks, supports proactive risk management, and saves you time, so you can focus on growing your business. Start building trust with customers and scaling confidently.
Leave legacy GRC behind. Meet the AI-powered platform built for teams managing risk and compliance in real time.
Give auditors direct access, keep track of every request, and manage audits effortlessly—all in one place.
Scrut ensures access permissions are correct, up-to-date, and fully compliant.
Whether you need fast results or a fully tailored program mapped to your risks and needs, Scrut delivers exactly what you need, when you need it. Ready to start?
Scrut unifies compliance across all your frameworks, so you can stop juggling systems and start scaling securely.
Manually managing your compliance processes and audits can get inefficient and overwhelming. Scrut automates these outdated, manual processes and eliminates your last-minute worries.
Access automated compliance, real-time risk tracking, and expert-backed support—all in one platform. Get started with Scrut!
Less manual work, more customizability. The Scrut Platform gives you everything you need to align your compliance to your business’s priorities.
The Scrut Platform helps you move fast, stay compliant, and build securely from the start.
Earn trust and back it up with solid evidence. Scrut takes you through the SOC 2 compliance journey step-by-step, navigating every complexity you face.
Manage your PCI DSS compliance with real-time monitoring and effortless automation. Get started with Scrut today!
Securing your PHI shouldn’t be a constant hassle. Scrut automates your workflows—from risk assessments to monitoring—so you can put your compliance worries on the back burner.
Automate security controls, simplify audits, and keep your ISMS aligned with the latest standards. Get started with Scrut!
Tackle potential AI risks with NIST AI RMF-compliant controls and get expert support every step of the way.
Offload the grunt compliance work to us. Execute manual, draining GRC tasks with the reliable AI-powered Scrut Teammates without switching contexts or bottlenecks.
Whether you're managing student data, partnering with educational institute, or expanding to new geographies—Scrut gives you the tools to stay compliant, manage risk, and build trust at every step.
Scaling healthcare doesn’t have to come at the cost of security. Scrut keeps your organization compliant, audit-ready, and protected—no matter how fast you grow.
Scrut automates the hard parts of compliance and security so you can move fast and stay ahead of risks from day one.
The Scrut Platform helps you move fast, stay compliant, and build securely from the start.
Growth in fintech comes with heavy scrutiny. Scrut helps you stay compliant, audit-ready, and secure—without slowing down your momentum.
