Insights

Articles, blog & news

Perspectives on Agentic Assurance, NCSC CAF programmes, product updates, and the evolving practice of evidence-led cyber assurance.

Diagram of the Agentic Assessment Engine: evidence flows from policies and audit logs through AI analysis with human validation to control status, gap analysis, and audit readiness dashboards

Blog21 June 20268 min read

Introducing Agentic Assurance and Compliance Assessments

Compliance assessments are slow, manual, and resource intensive. Agentic assurance uses AI agents to interpret control requirements, review evidence, and explain whether requirements are met — transforming how organisations prepare for NCSC CAF, ISO 27001, and similar frameworks.

CyConex projects supporting multiple assurance frameworks

News20 June 20263 min read

CyConex development update — June 2026

Progress on Agentic Assurance capabilities, CAF catalogue support, and the path toward broader commercial availability.

CyConex assessment workspace with NCSC CAF control selection

Blog15 June 20264 min read

What is Agentic Assurance?

Agentic Assurance combines AI agents with human expert judgement across the assurance lifecycle — orchestrating evidence work while assessors retain sign-off authority.

CyConex assessment recommendations for NCSC CAF controls

Article1 June 20265 min read

Scaling NCSC CAF assessments without losing rigour

How outcomes-based CAF programmes benefit from structured evidence workflows, IGP-level assessment, and repeatable agent-assisted review.

CyConex assessment recommendations for assessor review

Blog18 May 20264 min read

Keeping human judgement at the centre of AI-assisted assurance

AI can accelerate evidence review, but accountability for assurance conclusions must stay with qualified assessors.