Security posture
Last 30 daysAll frameworksACME Corp
Diagnose the exposures →Step 1 · Stand
Where do we actually stand?
Your posture in plain executive terms — one score, the frameworks behind it, and the exposures that move the number. No vanity metrics. Click any row to drill in.
Compliance score
71/100
Grade C ▲ 6 this qtrRisk exposure (ALE)
$4.2M
▼ $0.6M vs last quarter
Open exposures
3
2 critical · 1 high — the ones an assessor finds first
Evidence coverage
69%
Framework posture
Assess once, map all six →| Framework | Score | Grade | Δ 30d | |
|---|---|---|---|---|
| NIST CSF 2.0Hub | 81 | B | ▲ 4 | |
| PCI-DSS v4.0 | 68 | C | ▼ 2 | |
| HIPAA Security Rule | 59 | D | ▼ 3 | |
| GDPR | 74 | C | ▲ 1 | |
| SOC 2 Type II | 77 | B | ▲ 2 | |
| FedRAMP Moderate | 52 | D | ▲ 5 |
Where you're exposed
Diagnose →MFA not enforced for privileged cloud access
Touches 3 frameworks
Unencrypted patient data in a legacy datastore
Touches 3 frameworks
Quarterly access reviews are 9 months overdue
Touches 3 frameworks
Three gaps drive the score. Next: what each one exposes ACME to.
Next
Diagnose the exposures