XRATOR - Onboarding Get your Free Cyber Security Maturity Assessment Company Information Evaluation Finish Company Information Step 1 - 3 Company Size ---------- Self-Employed 1-10 11-50 51-200 201-500 501-1000 1001-5000 5001-10000 10001+ Industry Sector ---------- Agriculture Aerospace Automotive Communications Construction Defence Education Energy Entertainment Financial-services Government-national Government-regional Government-local Government-public-services Healthcare Hospitality-leisure Infrastructure Insurance Manufacturing Mining Non-profit Pharmaceuticals Retail Technology Telecommunications Transportation Utilities Country ---------- Afghanistan Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Cook Islands Costa Rica Croatia Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic East Timor Ecuador Egypt El Salvador England Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Islands Finland France French Guiana French Polynesia French Southern territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Israel Italy Ivory Coast Jamaica Japan Jordan Kazakhstan Kenya Kiribati Kuwait Kyrgyzstan Laos Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao North Macedonia Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia, Federated States of Moldova Monaco Mongolia Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island North Korea Northern Ireland Northern Mariana Islands Norway Oman Pakistan Palau Palestine Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Reunion Romania Russian Federation Rwanda Saint Helena Saint Kitts and Nevis Saint Lucia Saint Pierre and Miquelon Saint Vincent and the Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Scotland Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and the South Sandwich Islands South Korea South Sudan Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syria Tajikistan Tanzania Thailand The Democratic Republic of Congo Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United Kingdom United States United States Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Vietnam Virgin Islands, British Virgin Islands, U.S. Wales Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe Annual Company Revenue ---------- Less than 10k$ 10-100k$ 100-1000k$ 1-10 millions $ 10-100 million $ 100+ millions $ Cybersecurity Budget ---------- None Less than 10 k$ 10-100 k$ 100-1000 k$ 1-10 millions $ 10-100 million $ Do you have remote working ---------- No Yes How many websites do you have ---------- None 1-5 6-20 More than 20 Evaluation: Identify Step 2a - 3 Number of person dedicated to security ---------- 0 1-5 6-20 20-50 50-100 100+ Does your organization have any security certification ---------- No Yes How often are you doing security drill ---------- Never Monthly Quarterly Annually Less often Do you have a third party risk evaluation startegy ---------- No Yes Evaluation: Protect Step 2b - 3 Have you deployed Antivirus solution ---------- No Yes Are your Critical Assets clearly identified ---------- No Yes How often are do you perform security awareness training ---------- Never Monthly Quarterly Annually Less often Do you have a Data Leakage Protection Strategy ---------- No Yes Evaluation: Detect Step 2c - 3 Do you include Physical Access in your Cybersecurity Strategy ---------- No Yes How many security incident do you have per year ---------- 0 1-5 6-20 20-50 50-100 100+ How often do you review your security events logs ---------- Never Hourly Daily Weekly Less often How often do your perform Red Team Engagement ---------- Never Monthly Quarterly Annually Less often Evaluation: Respond Step 2d - 3 Do you have a Security Incident Response Team ---------- No Yes Do you systematically improve your strategy with incidents feedback ---------- No Yes Do you have a clear third parties communication plan during/after incident ---------- No Yes How often do your perform Internal Threat Hunting ---------- Never Monthly Quarterly Annually Less often Evaluation: Recover Step 2e - 3 What kind of backup strategy do you have ---------- None Local Off-site Hot Cold All of them Do you perform crisis simulation ---------- No Yes How would you recover a reputation loss of you customer ---------- No particular action Cooperation with authorities Discount No recovery possible Freetext How often do you test your Business Recovery Plan ---------- Never Monthly Quarterly Annually Less often Finish Step 3 - 3 CONGRATULATION ! Your report has been correctly submitted
