.png?height=120&name=Orpheus-Logo-Landscape%20(2).png){kind=logo}
Cyber risk scores combine your vulnerability score and threat score.
Your score is a combination of your vulnerability score and threat score.
Whereas most companies review only your attack surface (what we call the vulnerability score), Orpheus knows that we need to combine relevant threat intelligence to get an accurate picture of your risk. We provide a threat score which reviews your threat profile.
NIST defines risk as vulnerability + threat + impact. You will know the impact to your organisation of a cyber attack, financially and reputationally. We provide an indicator of the likelihood that you will be a victim of such an attack.
The data points that we collect on the company are all publicly available. We do not pen test your systems or access any internal information. This provides an indicator of your cybersecurity posture and is similar to the methods a cyber criminal would deploy to assess the likelihood that their attack would be successful.