10 catalogued controls across 10 areas, assessed deterministically against your uploaded and connector-collected evidence — honest coverage against the full catalogue, consultant-grade reporting from one run.
Book a Third-Party Risk Management (NIST 800-161 / CPS 230) demo → Try it on sample docsUsed by: Banks & APRA-regulated · GRC consultants & practices · Healthcare · Critical infrastructure — SOCI
Generated from the live catalogue at build time — control identifiers and CyberSentien's own labels; no standard text is reproduced.
Verdicts against the FULL catalogue — controls without evidence read “manual assessment required”, never a fabricated pass.
Every report carries a run id and SHA-256 integrity anchor; sections trace to the controls and evidence they rest on.
The same run renders the Third-Party Risk Management (NIST 800-161 / CPS 230) report, executive brief and board pack — no drift between audiences.
Run it against synthetic sample documents now, or bring your own evidence in a gated demo week.