Based on dynamic and strategic risk management principles, BreachRisk™ Score uses a 10-point scale to provide an easily understandable metric for cyber risks and security.
Doing business in a globally and digitally connected world means that cyber risk and risk management becomes an increasingly relevant part of business decisions. Working within the global supply chain, with vendors, insurance providers, partners, and others means not only understanding your own risks, but being able to communicate your risks and understand the risk you can take on dealing with others.
BreachRisk™ Score communicates cyber risks using a 10-point scale to help make risk management and security conversations simple. BreachRisk™ Scores describe the risk of a cyber breach, considering hundreds to thousands of direct and indirect observations, helping make the vast and complex communication of risk as easy as a single number.
Lower scores are better with a higher number indicating a higher relative risk of a cyber breach.
The BreachRisk™ Score can be the very first step in improving your security or in proving your security to customers, partners, potential investors, or insurance providers.
You can get a BreachRisk™ Score for your business for free using our BreachRisk™ for Business service . The free service will allow you to enter your primary domain and receive a free score about once every quarter and you'll be able to securely share that score with any other organizations or businesses for free as well.
Dig deeper into your organization's security by including additional IPs and domains or upgrading your service to include our continuous penetration testing services .
How Your Score Is Determined
Our risk scoring methods are based on dynamic and strategic risk management principles used by best-in-class organizations from the Pentagon to Wall Street.
Every threat can be described by how likely it is to occur (likelihood) and the impact to the subject if it were to occur (impact). Risk is the product of the two. Although some popular cyber risk equations include terms such as threat and vulnerability, even these can be mathematically simplified into this classic equation. BreachRisk Score answers the question, "what is the relative risk that a cyber breach will occur to this organization in the foreseeable future?"
Each threat found in your report is given danger rating based on its risk likelihood and impact. This describes how easily an attacker could exploit the threat, and the nominal damage that could be done. Your score will trend toward the highest of these danger ratings, balanced with other factors.
The frequency with which your score updates depends on the frequency of cycles, which is determined in part by the level of service. Scores represent a rolling average of the threats in your infrastructure over a given timeline, usually 90 days. This means that while addressing a threat will show immediately on the next score determination, your scores change will be gradual. Addressing risk in this way provides an accurate picture of threat and also means that neither a negative or positive score on one threat can result in large swings of your score.
Get Started Today
Determine which of our services best fit your needs and get started with the BreachRisk™ Score. and free BreachRisk™ for Business service to begin to determine and communicate your own risks to customers or within your company's ecosystem of partners and providers. Or use BreachRisk™ Portfolio services to easily understand the risks and needs of other companies by reaching out to us at support@breachbits.com.