7 Pillars, One Unified Vision
Each pillar covers a strategic axis of cyber governance, with concrete and actionable modules.
Governance & Organization
Structure your cyber governance with clear organization, defined responsibilities and documented processes.
- Domains (organizational structure, hierarchy)
- Perimeters (GRC assessment scope)
- Stakeholders (stakeholder management)
- RACI Matrix (roles & responsibilities)
- Document Management (versioning, approval, search)
- Workflows & Procedures (modeling, validation, traceability)
Risk & Classification
Identify, quantify and treat your cyber risks with recognized methods and a centralized registry.
- EBIOS Risk Manager (5 guided workshops, ANSSI method)
- FAIR Analysis (Monte Carlo, ALE, LEF, PLM, ROSI)
- Risk Registry (scoring, treatment plans)
- CIA Classification (Availability, Integrity, Confidentiality : Law 05-20)
- Data Classification (sensitivity, access policies)
- Risk Scenarios (modeling, attack paths)

Compliance & Audit
Assess your compliance across 15+ frameworks, collect evidence and generate audit reports automatically.
- 15+ GRC Frameworks (ISO 27001, NIS2, DORA, DNSSI, SOC 2, etc.)
- Automatic cross-mapping between frameworks
- Applied Controls (implémentation tracking, 800+ assessable)
- Evidence (upload, approval, control linking)
- Audits & Assessments (campaigns, maturity scoring)
- Pentest & Vulnerabilities (Nessus, Qualys, prioritization)
- Report Generation (OnlyOffice, DOCX/PPTX/XLSX, dynamic variables)

Accreditation
Manage the accreditation process for your sensitive information systems, from classification to authorization.
- Generic IS accreditation process
- Example: DGSSI (Article 19 Law 05-20, 4 phases)
- IS Classification
- Auto-generated document templates
- More accreditation frameworks coming soon

Operations & Incidents
Manage your incidents, findings, action plans and changes within a structured and measurable framework.
- Incident Management (timeline, severity, NIST SP 800-61 cycle)
- Findings Management (NC, observations, vulnerabilities, distribution)
- Action Plans & Recommendations (tracking, overdue, progress)
- Change Management (7-step ITIL process)
- Periodic Tasks (calendar, recurrence)
- KPI Management (category indicators, trends, API connectors)

OT / ICS Security
Protect your critical infrastructure, SCADA systems and industrial networks with a dedicated operational security platform.
- 38+ supported OT asset types
- Purdue Model (L0 to L5)
- IEC 62443 Zones & Conduits
- 18 monitored industrial protocols
- 14 OT frameworks

SOC (Security Operations Center)
Threat detection, investigation and response with an AI-powered SOC, MITRE ATT&CK and native SIEM/EDR integrations.
- 18 integrated SOC modules
- 5 supported SIEMs (Elastic, Splunk, QRadar, Sentinel, Wazuh)
- 5 EDR/XDR (CrowdStrike, Defender, SentinelOne, Carbon Black, Cortex XDR)
- SOAR: 6 automated actions
- UEBA: ML-based anomaly detection
- Threat Hunting, Forensics, ASM
