Security Rating®

Intro sr

Security Rating® by Board of Cyber is a SaaS solution for assessing an organization's security posture. It is based on an automated, non-intrusive analysis of the organization's assets, as well as questionnaires on cyber needs and maturity. It operates on a continuous or one-shot basis, and generates recommendations for improvement using single or multi-company dashboards.

100% automated rating
Continuous or due dil ratings
Non-intrusive rating

Key benefits

A better understanding of your cyber posture.
Identification of potential risks to which the company is exposed.
Taking action to anticipate and mitigate risks.

The Rating

Our solution gives your organization an overall score, from 0 to 1000, as well as a score from A to E for each of the following six areas of analysis:

  • Asset identification
  • Access security
  • Data security
  • Network security
  • Application security
  • Operations security

Our solution also provides detailed explanations and recommendations for each problem detected. This information enables your organizations to understand the risks to which they are exposed, and to take the necessary steps to mitigate them.

Scoring can be carried out automatically, without any interaction with the organization being assessed.

Complete your rating with our standard questionnaires, to assess :

  • The security needs of your organization or ecosystem.
  • The cyber maturity of your organization or ecosystem.
  • On request, we can provide other questionnaires (GDPR, PCI DSS, NIST etc.) or integrate your own questionnaires.
Attack surface
Vulnerabilities
Safety check
Messaging
WEB TLS/SSL
Safety incidents discovered

Control

Dashboards
  • Access your rating by area of analysis.
  • View your rating history day by day.
  • View company ratings and key criteria.
Sector benchmark
  • Evaluate how your company compares with all rated companies in the same sector.

The benchmark shows the minimum rating, the maximum rating and the sector average.

Downloadable reports
  • Download the summary report including the overall assessment, the dashboard, and the analysis by domain to evaluate the cyber risk with your board.
  • Download the detailed report with observables, recommendations, and criticality level to help your ISS team improve its cyber performance.

Manage the cyber risk of your ecosystem: suppliers, partners, shareholders etc. Our solution also includes a multi-organization view.

Improve

Priorities and improvements
  • View the number of assets assessed and those at risk for each area of analysis.
  • Use a color-coded dashboard to quickly determine the current status and priorities.
  • Access the criticality level indicated for each problem identified.
  • Zoom in on areas for improvement by selecting either a view by asset at risk or by control point.
Detailed explanations and recommendations
  • Discover the asset concerned, its level of severity, the explanation of the problem and the recommendation.
  • Download detailed report to share observables with remediation team.
Vulnerability patching reactivity
  • Analyze your patching reactivity for each severity level, to ensure you comply with best practices (e.g. less than 5 days for critical vulnerabilities).
  • Identify the most exposed URLs to improve your organization's security and plan actions.