MCP Integration

Connect Any AI Assistant to ONTRACE.

The Model Context Protocol (MCP) lets your AI assistants — Claude, ChatGPT, or your own enterprise AI — query your live risk register, trigger compliance workflows, and interact with your ISMS through natural language.

Get MCP Access View REST API

What is MCP?

The protocol that bridges AI assistants and your data.

The Model Context Protocol (MCP) is an open standard created by Anthropic that defines how AI models communicate with external tools and data sources. Think of it as a universal connector — instead of building custom integrations for every AI platform, MCP provides a single protocol that any compatible AI assistant can use.

When ONTRACE.AI exposes an MCP server, your AI assistants can natively understand what ONTRACE can do, ask it questions, and trigger actions — as if they were built-in capabilities of the AI assistant itself.

Open protocol

MCP is an open standard created by Anthropic that allows AI models to interact with external tools and data sources in a standardized way.

Tool definitions

Developers define "tools" that AI assistants can call — each tool has a name, description, and parameter schema that the AI uses to understand what it can do.

Bidirectional

MCP supports both reading data and triggering actions — enabling AI assistants to both query ONTRACE and perform operations within it.

Model agnostic

MCP works with any AI model that supports the protocol — Claude, GPT-4, and any other MCP-compatible model or AI assistant.

How MCP Connects Your AI

Your AI Assistant

"Show me all high-severity open risks"

MCP Protocol

Translates intent to API call

ONTRACE.AI

Returns live risk register data

AI Response

"You have 7 high-severity open risks. Top priority: access controls on production DB..."

Use Cases

What you can do with ONTRACE MCP.

MCP transforms ONTRACE.AI from an ISMS platform into a native capability of your AI assistant — enabling powerful, context-aware security workflows.

Query Risk Data from Any AI Assistant

Ask Claude, ChatGPT, or your enterprise AI assistant about your current risk posture — directly querying ONTRACE's live risk register without switching context. "What are our top-rated open risks this quarter?" becomes a natural language query.

Automate Compliance Workflows

Trigger ONTRACE.AI compliance workflows from within AI assistant conversations. Initiate risk assessments, update treatment plans, or create evidence records — all through natural language commands interpreted by your AI toolchain.

Build AI-Powered Security Dashboards

Use MCP to pull ONTRACE data into custom AI-powered dashboards and reporting tools. Build executive briefings that combine your risk data with AI-generated analysis and recommendations.

Integrate with Existing AI Toolchains

If your organization has already built AI automation pipelines — internal copilots, agentic workflows, or AI-assisted operations — MCP lets you add ONTRACE's ISMS intelligence as a native capability in those pipelines.

Technical Overview

Conceptual MCP server structure.

Illustrative example showing how the ONTRACE MCP integration is structured. Actual implementation details are available to customers.

ontrace-mcp-server.ts — Conceptual

// Conceptual MCP server configuration
// Not real implementation — for illustration only

import { MCPServer } from "@modelcontextprotocol/sdk";

const server = new MCPServer({
  name: "ontrace-isms",
  version: "1.0.0"
});

// Tool: Query risk register
server.addTool("get-risk-status", {
  description: "Query the live risk register by severity, status, or owner",
  parameters: {
    severity: { type: "string", enum: ["critical", "high", "medium", "low"] },
    status: { type: "string", enum: ["open", "treatment_in_progress", "accepted"] }
  },
  handler: async (params) => {
    // Returns live risk data from ONTRACE.AI
    return await ontrace.risks.list(params);
  }
});

// Tool: Get compliance posture
server.addTool("get-compliance-posture", {
  description: "Retrieve current compliance status for a given framework",
  parameters: {
    framework: { type: "string", example: "ISO 27001" }
  },
  handler: async (params) => {
    return await ontrace.compliance.posture(params.framework);
  }
});

server.start();

Full MCP implementation documentation and configuration guides are available to customers within the ONTRACE.AI platform.

Compatibility

Works with the AI assistants your team already uses.

Anthropic Claude

Native MCP support via Claude Desktop and API

OpenAI ChatGPT

Via MCP-compatible plugins and tool use

Custom AI Assistants

Any AI assistant built on MCP-compatible foundations

Enterprise AI Platforms

Internal copilots and AI platforms with MCP support

MCP vs REST API — when to use each.

Use MCP when...

Integrating with AI assistants and copilots

Building natural language interfaces to risk data

Connecting AI-powered automation workflows

Enabling chat-based security operations

Use REST API when...

Building programmatic system-to-system integrations

Connecting to BI tools and data warehouses

Building custom dashboards and reporting

Scripting operational workflows and automation

Get Started

Ready to connect your AI assistant to ONTRACE?

MCP access is available as part of ONTRACE.AI's API tier. Contact our team to discuss your AI integration requirements, and we'll help you connect your existing AI toolchain to your live risk intelligence.

Contact for MCP Access View REST API Overview