Celeredge
Book a demo

Frameworks / Cybersecurity

Cybersecurity assessment frameworks

Score a client's security posture against the standard they're held to — evidenced from their own policies and controls, not opinion — and hand back a board-ready report.

UK regulatory coverage: 3 of these 7 frameworks are UK-specific — built for firms advising regulated UK clients.

Book a demo All frameworks

7 frameworks

Cybersecurity frameworks you can run

Each runs an evidence-based maturity or readiness assessment, scored on the standard's own scale.

NIST CSF 2.0

Score maturity across all six CSF 2.0 functions, evidenced from the client's own controls.

Standard

ISO/IEC 27001 ISMS Readiness

Gauge ISMS readiness against the Annex A controls before committing to certification.

Standard

Zero Trust (CISA ZTMM)

Rate zero-trust maturity across the five CISA pillars and the gaps to close first.

Model

CIS Controls v8

Benchmark the 18 CIS Controls and implementation groups against real evidence.

Standard

Cyber Essentials (NCSC)

Check readiness against the five NCSC Cyber Essentials controls before assessment.

UK

NCSC Cyber Assessment Framework (CAF)

Assess against the 14 CAF principles for NIS-regulated and critical services.

UK

NHS Data Security & Protection Toolkit (DSPT)

Evidence the NHS DSPT standards for health and care organisations.

UK

How it works

From the client's documents to a board-ready deck.

1 · Evidence in

Upload the client's documents — policies, reports, data. An AI interviewer asks targeted follow-ups to fill anything missing.

2 · Scored on the standard

Every dimension is scored on the framework's own scale, with each score traceable to the evidence behind it — gaps ranked by severity.

3 · Board-ready out

A board-ready slide deck and HTML report are generated automatically — executive summary, maturity landscape and a sequenced plan.

Evidence-grounded, not opinion

Defensible Cybersecurity scores.

Every score links back to the evidence it rests on, so the diagnosis holds up in the steering committee. See how evidence is collected and assessments are scored.

  • Scored against the standard's own bands — not a generic rubric
  • Gaps ranked by severity, ready to become the plan
  • Auto-generated slide deck and HTML report for the board
Evidence & assessments →
A scored cybersecurity maturity assessment with evidence-linked scores and ranked gaps

More practices

Explore other assessment practices

Data & AI · Technology · Finance & Risk · Operations · Growth · Strategy & Transformation · Sustainability · Human Capital

See all 31 frameworks →

Run an assessment on real data.

We'll set up a framework live and score it from your client's own documents.

Book a demo