The Cybernance Platform: Automated Cyber Risk Assessment, Risk Mitigation Monitoring and Reporting

The Cybernance Platform enables NIST Cybersecurity Framework (CSF)-based rapid initial and on-going cyber risk assessment, and facilitates management of risk reduction efforts, without expensive consultants.

Cybernance & PointStream's

Rapid Assessment and Reporting tool now available, enabling agencies to rapidly assess and manage cyber risk 


Cybernance’s automated solution enables agencies to

Perform NIST-based initial and ongoing, continuous assessments of about 400 controls, enabling comprehensive risk identification across the organization;

Identify the most critical risks for mitigation, providing detailed basis for management decisions;

Structure and deliver automated reports relevant to stakeholders at all levels.


The Cybernance Platform features

An extensively detailed, easy-to-use NIST-based risk management framework

Continuous monitoring of cybersecurity progress;

Real time data in customizable dashboards; and,

A professional support team (included in the subscription price) dedicated to ensuring your success.

Best-priced Performance Solution

"PointStream, with the Cybernance SaaS solution, offers the USG the best-priced performance solution to meet the Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure," said Ron Cassoni, president of PointStream. "Our dynamic solution provides rapid compliance with this order, and its availability on the GSA IT Schedule 70 (Cloud SIN 132-40, Contract GS-35F-394GA) can empower government agencies to properly manage their cyber risk."

Contact us to schedule a demo

Contact Us

How does Cybernance work?


Cybernance is a cloud-based software-as-a-service (SaaS) application for accessing, monitoring, and guiding an organization's move toward cybersecurity maturity and resilience.

Non-Technical Management

Non-technical administrators can manage cyber risk and non-technical managers can govern it.

Easy to understand questions

Answer 85 questions in a easily accomplished assessment to reveal the status of almost 400 controls. A control is simply a process, procedure, technology, or step that mitigates cyber risk.

Real Time Results

Results are displayed in an online dashboard that provides an overall risk score broken down by risk management, risk culture, and risk influence.