Cyseon Overview

Cyseon (cyber security online) is a tool created to enable easy management of cyber security control frameworks and standards. Its dashboard view provides an easy-to-understand view of the status of the entire framework, allowing you to see strengths and weakness in control areas at a glance.

The objective of Cyseon is to make managing security controls and recording their maturity and compliance as straightforward as possible - with everything existing in a single screen, designed to enable rapid editing and navigation across even the most complex of control profiles.

One of the key fesatures of Cyseon is its intelligent issue detection functionailty. This is used to automatically detect disparities and weaknesses within Control areas, and prioritise them to proivde an insight into where resourcing and improvement should be directed. This functionailty is entirely framework independent - it requires no pre-existing knowledge of controls or specific frameworks, but instead analyses control profiles in real time to detect and prioritise issues. It achieves this using several techniques:

  • Detecting gaps within maturity levels (where specific 'requirements' score lower than others within the same section)
  • Identifying general deficiencies in control areas (Where specific 'requirements' score significantly below the total maturity score)
  • Uncovering visibility risks for notably deficient controls (Where specific controls defined to meet a 'requirement' are significantly less mature than others within the same 'requirement')

These issues are presented visually within the Cyseon dashboard and updated in real time as control scores and framework requirements change.

Security frameworks hold extremely sensitive information and Cyseon has been designed with security in mind - it does not maintain user accounts, store any information, or use any databases - it runs entirely as a client-side javascript application within a users browser, utilising the local fileystem to load and save framework data. The tool itself is served from a static S3 bucket on AWS, but it can be downloaded and used offline if required.

Cyseon Features

Cyseon is built with simplicity in mind, using carefully designed features to maximise efficiency and effectiveness without over-complicating the user experience.

Custom Frameworks

Create your own framework from scratch, or use a pre-built industry standard

Single View of Controls

See at a glance the maturity and compliance of all framework areas

Easy Editing

Make changes and updates in real time without leaving the page

Multi-format Exports

Export control profiles in JSON or excel formats for external editing

Fast Navigation

Use the interactive visualisations to

Keyword Searching

Search control descriptions, updates or titles instantly

Issue Identification

Automatically detect and highlight deficiencies and gaps within control areas

Issue Prioritisation

Intelligently rank identified issues to prioritise activities

Pre-built Frameworks

There are a lot of existing control standards within the infosec industry. Below are a sample of templates made in Cyseon that are based on popular security frameworks, or you can create your own.

ISO27001

  • Template of the requirements from the ISO27001 standard
  • (https://www.iso.org/isoiec-27001-information-security.html)
Launch

CIS Controls

  • Template based on the CIS Controls framework
  • (https://www.cisecurity.org/controls)
Launch

NIST CSF

  • Template based on the NIST Cyber Security Framework
  • (https://www.nist.gov/cyberframework)
Launch

Default (new)

  • Create your own framework from the default template
Launch

Get in touch

Any feature requests or bug reports can be sent to report@cyseon.com. If you would like to get in touch or have any other queries, message contact@cyseon.com.