Assessment result is
It is measured using the S2Score algorithm (a definitive measurement of information security risk calculated within the range of 300 and 850, and weighted based upon current real-world threats).
It is used to aid and justify compliance for multiple regulatory security requirements, including HIPAA, GLBA/FFIEC, CMMC, and Others. It provides a building block for cost-effective and sustainable information
It is used across all industries, in the private and public sectors to manage risk effectively. Controls are mapped to major industry standards, including ISO 27002:2013, NIST SP 800-53, CIS Controls, and Others.
It removes all unnecessary complexity by maintaining focus on cybersecurity fundamentals.
It translates information security jargon into plain English for non-information security professionals.
It assesses risk across four phases: Administrative, Physical, Internal Technical, and External Technical controls.
A quick look at the control families
Schedule a demo to dive deeper into the details