Report Structure

Reporting consists of the organisations current security maturity state based on industry standards such as NIST CSF, next steps for maturity improvement, and a detailed overview of each assessed domain.


The reports are for The management Boards, CXOs, Executives, Line managers and the DevOps team alike. Aristiun accumulates the information based on the Industry, Geography, Level of participants, and companies' size.

The Industry insights are published to all the participants, and specific reports are customised for the only participating organisation.

Executive reports are for leadership. The report is a quick scan of the scoped landscape and consist of high-level directions.
The detailed report is meant for Line managers and DevOps teams for each domain. The details of the current and future state should provide actionable insights.

and Self-Service

Assessments are created in a way that they can be consumed in a self-service manner. Results can be augmented with automated results from actual security levels in IT systems (such as cloud based infrastructure and applications).

This allows for a wide range of inputs which dictates security maturity.

Automation to gain security insights directly from systems (both infrastructure and applications).
Self service allowing you to maximise use of assessments at any time and easily include representatives from business and IT.

Executive Insights

The insights are self-service and dynamically updated as the additional context is added. The decision making can be agile as the bottom-up information required can be pulled directly from consumption platforms such as public clouds.

The security compliance demonstration is near real-time for the public cloud environments and does not require the executives' re-skilling.



Industry Context