Integrations
ConcertoGRC integrates with cloud providers, identity providers, device management tools, communication platforms, and task managers to automate evidence collection, sync personnel directories, import security findings, and monitor device compliance.
Integrations are managed at two levels:
- Platform level -- the Concerto team curates the integration catalog, pre-maps data outputs to evidence requests and modules, and publishes integrations for tenant use
- Tenant level -- administrators browse published integrations, configure connections, and optionally customize inherited mappings
Available Integrations
| Integration | Category | What It Provides |
|---|---|---|
| Amazon Web Services | Cloud Infrastructure | GuardDuty findings, IAM misconfigurations, infrastructure inventory, evidence reports |
| Microsoft 365 / Entra | Identity & Access | User/group sync, MFA detection, enterprise app inventory, access grants |
| Google Workspace | Identity & Access | User/group sync, MFA detection, admin user identification |
| Slack | Communication | DM notifications, channel alerts, incident submission via /incident command |
| Microsoft Intune | Endpoint Management | Cross-platform device inventory and compliance monitoring |
| Jamf Pro | Endpoint Management | Enterprise Apple device management and compliance |
| SimpleMDM | Endpoint Management | Lightweight Apple device management |
| Motion | Task Management | AI-powered task scheduling with bidirectional sync |
Data Flow
Integrations push data into specific platform modules:
AWS GuardDuty / IAM → Vulnerability Management (findings)
AWS IAM Reports → Evidence Library (MFA, access lists)
AWS Infrastructure → Infrastructure (inventory, diagrams)
Microsoft 365 / Google → Personnel Directory (users, groups)
Identity Providers → Evidence Library (5 compliance reports)
MDM Providers → Endpoint Management (device inventory)
Slack → Notifications, Incident Response
Motion → Task Management (bidirectional sync)
Sync Schedules
| Category | Interval | Details |
|---|---|---|
| Identity Providers | Every 24 hours | User/group sync, MFA detection, evidence report generation |
| AWS | Every 6 hours | GuardDuty findings, IAM reports, infrastructure inventory |
| Endpoint Management | Every 6 hours | Device inventory, compliance status, encryption/firewall checks |
Sync runs automatically on schedule. The platform deduplicates data on each sync cycle -- existing records are updated rather than duplicated.
Setup & Configuration
For connection setup and status management, see Administration → Integrations. For detailed guides on each integration, see the pages below:
- AWS Integration -- GuardDuty, IAM, and infrastructure
- Microsoft 365 -- Entra ID directory sync and enterprise apps
- Google Workspace -- Domain-wide delegation and directory sync
- Endpoint Management -- Intune, Jamf Pro, and SimpleMDM