Top 3 Challenges Security Leaders Face in 2023-2024

Thanks for the opportunity to serve this great community of Security & Risk Management Leaders. Knowing the landscape of our #criticalinfrastructure sector challenges helps us plan and allocate resources effectively. I’ve had a great number of collaborations with industry leaders this quarter, focusing on interest rates, new threats, the evolution of AI, and global economies. Here are […]

A Letter from the CEO

Dear team, customers, and investors  The challenges ahead for us collectively in 2023 are numerous:  Global economic uncertainty.  The worrisome expansion of the Ukraine/Russia conflict.  The eternal challenges of scaling SaaS globally with a keen eye on efficiency and resource management.  Undoubtedly such looming dangers in the cyber threat landscape call for asset owners to […]

Cybersecurity Benchmarking for Critical Infrastructure Sectors

3 Challenges to Industry Benchmarking It was an honor to be invited by the Capital Factory to meet with CISA’s Infrastructure Security team and address how to scale cybersecurity programs. I enjoyed giving a brief presentation on’s mission and how we are serving the critical infrastructure community. One of the questions I received was […]

Maritime Cybersecurity Risk Assessment Tool


Battling 21st Century Threats on the High Seas While historically pirates have been considered the primary threat to maritime security, increasingly ships and shipping have become vulnerable to cybersecurity threats. In particular, a number of the systems aboard vessels have been found to lack protection measures to safeguard ships from specific types of cybersecurity attacks. […]

How Successful Cybersecurity Consultants Drive Higher Client Satisfaction

blog header - How successful cybersecurity consultants drive higher client satisfaction

As an ex-assessor turned product company CEO, I believe great inventions spring from the minds of people hardened through their own struggles and challenges in a unique arena of expertise. For the team at, we’re a Software as a Service (SaaS) company, but if you ask our clients what we do they’ll likely say we’re […]

Colonial Pipeline Cyber Attack – Help With Cyber Assessment And Next Steps

On Friday Colonial Pipeline, a major U.S. fuel pipeline operator, was brought down by a ransomware cyber attack. Details are still coming in as the situation develops. We recognize how difficult this time is for the teams at Colonial Pipeline and all the vendors and suppliers that work with them. Our hearts go out for […] Platform – Entities Page

In this series of posts from our CEO and co-founder, Ted Gutierrez, he talks about our platform’s Entities Page. Why it exists, what our customers use it for, and how it helps them make risk management improvements faster. Enjoy.     So You’ve Completed an Assessment….What Now? When I was a risk manager working for […]

Plan Your Remediation Budget

make sure to allocate enough dollars to cover remediations your team might need

Start with remediations first The most challenging part of remediations is finding the resources. Whether people, budget, or time, risk stakeholder teams are generally overworked and remediation activities tend to take second chair for newly organized or exhausted teams. One way to ensure that resources are available post-assessment is to ask for them before the […]

How to Pre-Plan Assessment Remediations

preplanning your remediations

Make your assessments meaningful by pre-planning remediations Upon first glance, this may seem backward. Remediations come after the assessment where you discover what needs to be remediated, right? Yes, but if you’ve been involved with risk management for a few cycles of assessment and “reassessment” activities, you’re likely familiar with a common theme: Most post-assessment […]