The first part of the assessment identifies the different
exposures of the organization using the Exposure Index.
The Exposure Index evaluates the different avenues in
which an organization is potentially exposed to IT attacks
through collection of company metadata and a survey
of the types of technologies available within and offered
by the company.
The second part of the assessment, known as the Maturity Assessment,
is used to determine the organization's cybersecurity preparedness
levels within each of the NIST Core Framework's “Functions” by analyzing the extent to which the organization has implemented each of the NIST Core Framework's “Sub-categories” for cybersecurity readiness.
Maturity levels are determined for each of the five major Functions
based on the answers provided during the assessment.
The summary includes TraceSecurity recommendations to strengthen your organization’s cybersecurity posture based on the results of the self assessment. Once the assesment is complete, you can easily export your results to common file formats or upload in our Risk Management tool for easy management of remediaton actions you choose to pursue.
*The Risk Management tool is a paid feature and not included with TraceCSAT.