In the growing realm of data breaches, the costs associated with investigation, remedies and penalties can be staggering. Data breaches happen more often and all types of companies are looking for ways to mitigate finanical impact of cyber attacks.
Currently, most security products of services are compliance checking. Give an absolute fail or pass on certain checklist. They treat cyber security as deterministic and believe compliance is security. This model is proven not ideal and create works that do not address risk directly.
We do it differently and treat cyber risk as a probability based on a set of risk indicators.
Our software product is an automated security control assessment tool that speed up measurements of security control and also gather data for statistical models. Our uniqueness is on the cyber risk data models with predictive analytics using Monte Carlo simulations.