Continuous assurance

Continuous cyber assurance

Cyber risk does not move in annual cycles, so assurance should not either. CyConex lets you run recurring assessments on a schedule, keep an assurance history across cycles, and share a live posture that is always current.

This reframes CAF and other assessments from a one-off deliverable into an ongoing, repeatable programme — easier to sustain and far more defensible to boards and regulators.

Sign up free

Early access · Free · No credit card required

  • Scheduled, recurring assessment runs
  • Assurance history and control timeline across cycles
  • Always-current shareable heatmap link
  • Evidence of ongoing control effectiveness
CyConex assurance history timeline across review cycles

Frequently asked questions

Is CyConex a one-off assessment tool or continuous?

CyConex is built for continuous assurance. You can run recurring assessments on a schedule, track an assurance history and control timeline across cycles, and publish a live shareable heatmap that stays current for boards and regulators — not just a point-in-time snapshot.

Can CyConex export Word and Excel reports?

Yes. CyConex generates structured Excel and Word assessment exports, along with CAF heatmaps at objective and principle level — ready for GovAssure reviewers, competent authorities, and governance stakeholders.

Which frameworks does CyConex support?

NCSC CAF is the primary framework — four objectives, fourteen principles, 41 contributing outcomes, and IGPs. CyConex also supports Cyber Essentials, NIST 800-53, NIST CSF 2.0, and custom control catalogues, with structured catalogues and reusable assessment context.