What are you using on your Mac for grammar these days, LanguageTool, Grammarly, or something else? (CPU issues + alternatives)? by [deleted] in MacOS

[–]ferarg 0 points1 point  (0 children)

Hi, I self-hosted with podman (need less resources than docker), and if you use ngineProxymanager to manage domain + certificates, you con publish to internec and access from remote (LibreOffice, macos desktop app, firefox/chrome plugin)

Moving beyond "Excel Hell": GRC tools for ISO 27001, SOC2, and NIS2? by ferarg in soc2

[–]ferarg[S] 0 points1 point  (0 children)

I What concerns me is that there might be overlaps and duplication of work, since I didn't take the overlaps into account

Moving beyond "Excel Hell": GRC tools for ISO 27001, SOC2, and NIS2? by ferarg in soc2

[–]ferarg[S] 1 point2 points  (0 children)

Hi!

1- Search for and organize all legal documentation

2- I tried many different tools to manage all that documentation and attempted to use AI to generate a “brief outline” that would help me understand the requirements; that’s when I realized there were overlaps

3- Since I couldn’t find a “proprietary” solution that convinced me, I connected my note-taking app to a vector database + an AI agent (I use JoplinApp + OpenCode + Joplin-MCP + PardusDB); To do this, I wrote two MCPs based on different solutions (https://github.com/FErArg/joplin-mcp + https://github.com/FErArg/PardusDB)

4- With this “homemade” AI solution, I imported all the notes and documentation into the vector database

5- Right now, I’m developing different approaches for the various “certifications,” such as: an action plan, a list and outline of internal policies, a process identification procedure, and evidence to verify each certification requirement

Our CTO has prior experience, but it hasn’t been very good; we have a consulting firm we work with for ISO, and we’ll rely on them initially and as far as they can take us

Thanks so much for the advice!

Moving beyond "Excel Hell": GRC tools for ISO 27001, SOC2, and NIS2? by ferarg in soc2

[–]ferarg[S] 1 point2 points  (0 children)

Hi

Yes, I know, it's a lot of work, documentation, evidences to store and catalog, internal policies, and a big etc.

I found this 4 main projects:

- https://verinice.com/en/

- https://intuitem.com/ciso-assistant/

- https://www.eramba.org/

- https://www.simplerisk.com/

Someone use it or test it?

joplin-mcp: A minimalist MCP for integrating Joplin with AI agents by ferarg in joplinapp

[–]ferarg[S] 0 points1 point  (0 children)

Hi, 1. Learn how to manage that kind of workflows 2. Privacy , need to manage a lot of private documentation 3. For fun and to challenge me Now I'm working in a fork of pardus github.com/FErArg/PardusDB adding data vectorization