Overview
The Group-Level Dashboard provides a single, interactive view of cyber risk across all subsidiaries/portfolio companies. The interface models how individual entity security postures contribute to the collective risk profile and tracks overall performance trends. It enables a side-by-side comparison of core metrics, Maturity, Exposure, Likelihood, and Cost of Breach, eliminating the need to analyze accounts individually.
Core Capabilities:
Analyze Risk Distribution & Outliers: Identify which entities, sectors, or business units drive total financial exposure, using visual treemaps to isolate high-impact contributors.
Standardize Performance Lenses: Compare distinct business models using a consistent, NIST-based framework, and apply custom Weighting Profiles (such as Revenue or Equal-Entity) to calculate risk based on business value.
Monitor Portfolio Health & Trends: View top-line KPIs at a glance and track whether performance is improving or declining across different sectors or timeframes.
Evaluate Performance Drivers: Interact with widgets and the Executive Summary Pane to isolate how changing timeframes, selections, and weighting profiles impact group metrics without leaving the dashboard.
Dashboard Structure
The dashboard is organized into three functional layers, moving from high-level group trends to individual subsidiary/portfolio insights.
Group-Level Metric Trends
Group-Level Metric Trends
The top section features three dedicated trend widgets for Exposure, Maturity, and Likelihood.
Weighted Metrics: when a weighting profile (such as Revenue) is active, the company size is taken into account when averaging, and the widgets display weighted values (e.g., "Weighted Maturity").
Influence: A large company will "pull" the trend line more than a small one.
Historical Logic: Each widget displays a line graph showing the metric's evolution over the last five time periods.
Hover Details: Hovering over any point on a graph reveals the exact value and the specific timeframe for that snapshot.
Exposure widget toggle: Switch the Exposure widget between Weighted Exposure (the per-entity weighted mean) and Sum (the summed exposure across all entities in scope), depending on whether you want to compare typical exposure or report the total group's exposure.
Note: A portfolio company’s maturity score is calculated against its selected Primary framework (e.g., NIST v2.0). To ensure your group-level trends are directly comparable, make sure all companies are set to the same framework.
Multi-subsidiary/portfolio company Distribution Widget
Multi-subsidiary/portfolio company Distribution Widget
The central area of the dashboard allows you to analyze your entities side-by-side. You can toggle between two views that serve different strategic purposes.
Matrix View: The Triage Map
The Matrix view uses visual hierarchy to surface patterns that are invisible in a standard list. It is designed for the rapid identification of risk concentration and performance outliers.
Tile Size: Each tile represents a company. Its size is determined by its contribution to the selected metric. For example, if "Exposure" is selected, the largest tiles represent the entities driving the vast majority of your group's total financial risk.
Tile Color: The dashboard utilizes a five-band color scale (Dark Green to Dark Red) to visualize how a company performs against its selected benchmark.
Green & Red — Performance signals: Most tiles will fall into these categories, representing significant outperformance or underperformance relative to the benchmark.
Beige — Neutral / mid-pack: A "neutral" state where the performance delta is either statistically insignificant or average. This occurs in two scenarios:
Insignificant Change: The difference between the company and the benchmark falls below these specific thresholds:
Exposure & Cost of Breach: < $100K
Likelihood: < 1%
Maturity: < 0.1
The Mid-Pack: In peer-relative comparisons, companies falling within the 25th–75th percentile are colored beige to signify they are neither leaders nor laggards.
Note: If an entire selection falls below these thresholds, the Matrix will appear entirely beige, with a treemap tooltip explaining the lack of comparison.Grey — Data gaps: Grey tiles signify missing data. If the current value or the benchmark is unavailable, the company is:
Excluded from all percentile calculations.
Prevented from affecting the rankings of other companies.
Marked with a per-tile tooltip specifying the missing data point.
Contextual Grouping: Use the Group-by control to organize tiles by Industry Sector.
Interaction: Hovering over a tile provides a quick summary of the current value and the delta since the last period. Clicking a tile opens the Executive Summary Pane.
Table View: The Granular Audit
The Table view strips away visual abstractions to provide a "source of truth" for every data point in your selection. It is the primary view for making decisions based on hard evidence and performing subsidiary/portfolio-level audits.
Multi-Metric Visibility: Displays all core metrics simultaneously (Maturity, Likelihood, Exposure, and Cost of Breach) for every subsidiary/portfolio in the selection.
Contribution Analysis: Shows the specific share of the group’s total value that a company represents for the selected metric (e.g., “7% of total exposure”). This value is dynamically calculated based on the active Weighting Profile and the active comparison filter.
If a metric or weight is unavailable, it is displayed as “N/A” (Not Applicable).Benchmark Comparison: Displays the delta relative to the active benchmark choice to track standing against internal or external peers.
Data Precision: Every row provides exact numeric values and specific currency amounts, ensuring there is no ambiguity when reporting on individual subsidiary/portfolio status.
Advanced Sorting & Search:
Ranking: Click any column header to instantly rank entities (e.g., to identify the "Top 5 most improved" or "Bottom 5 most exposed" companies).
Navigation: Use the integrated search bar to quickly locate a specific subsidiary/portfolio by its name or initials.
Dashboard Controls and Filters
The Group-Level Overview is a dynamic analytical engine. Changing any of these settings recalibrates the dashboard's mathematical model, shifting how risk is aggregated and visualized.
Selection
Selection
The Selection dropdown defines the structural boundaries of the active dataset.
The Logic: All trends, aggregated KPI values, matrix tiles, and table rows iterate exclusively from the selected subset of companies.
Strategic Use: This control isolates specific cohorts, such as comparing European subsidiaries against North American holdings, or reviewing high-growth investments separately from mature business units.
Weighting Profile
Weighting Profile
The Weighting Profile dropdown determines the mathematical influence each entity exerts on total portfolio-level trends and averages.
Equal-Subsidiary Lens: Treats every company as an identical unit, regardless of size or revenue. The backend calculates a simple average for Maturity and Likelihood, and a simple sum for Exposure. This ensures critical vulnerabilities in smaller units are not obscured by larger entities.
Revenue-Weighted Lens: Assigns influence proportional to an entity's annual revenue. Metrics from high-revenue units exert a stronger pull on portfolio lines, aligning risk reporting with operational business value.
Metric Selector
Metric Selector
The Metric control dictates the specific cyber risk dimension visualized in the Multi-Entity Distribution widgets.
The Logic: Switching between the four core metrics changes the data source for tile sizing, color mapping, and row data.
Strategic Use: This control changes the analytical focus from technical defense capabilities (Maturity) to financial liability (Cost of Breach), allowing users to view the portfolio through different risk management priorities.
Compare By (Comparison Benchmarks)
Compare By (Comparison Benchmarks)
The Compare by filter defines the reference baseline used to calculate Variance (Difference) across the Matrix and Table views. The universal logic for this control is: Current Value - Reference Value = Variance.
Previous Period: Benchmarks each company against its own historical performance from the prior period. It reveals the direct impact of recent remediation efforts.
Industry Benchmark: Benchmarks each company against the Industry Typical Level for its specific sector, establishing external market standing and competitiveness.
Change from selection's weighted average Value: Benchmarks each company against the overall Aggregated Selection Value (the number shown in the top KPI cards). This instantly exposes internal outliers that are pulling down or lifting the collective group score.
Maturity Target: Benchmarks current framework scores against a pre-defined corporate security goal, providing a clear gap analysis for resource allocation.
Grouped By (Matrix View Only)
Grouped By (Matrix View Only)
The Grouped by dropdown is exclusive to the Matrix visualization and controls the structural layout of the tiles.
The Logic: Selecting an attribute (such as Industry Sector) clusters individual company tiles into distinct visual blocks. Inside each block, tiles are still sized by contribution and colored by performance. Selecting "None" flattens the view into a single layer.
Strategic Use: It identifies systemic risk concentrations, exposing whether vulnerabilities are widespread across an entire industry sector or isolated to specific corporate branches.
Color legend
Color legend
The Logic: The color legend doubles as a performance-tier toggle.
How it works: Clicking a category in the legend (e.g., Improvement or stable) filters both the Matrix and the Table to show only the companies within that specific percentile band.
Strategic Use: Best for triage. You can instantly isolate the "Dark Red" entities for an immediate remediation plan or filter for "Stable + Improving" to highlight successes.
Wrap-Up/ Next Steps
Unified Risk Modeling: The Group-Level Dashboard bridges the gap between organization-wide oversight and subsidiary/portfolio-level remediation by modeling how individual entity security postures contribute to the collective risk profile.
Objective-Driven Filtering: The structural architecture eliminates group-level noise by establishing clear data boundaries via Scope, normalizing disparate business models through Weighting Profiles, and defining success criteria using targeted Comparison Benchmarks.
Streamlined Triage and Validation: The dual-layer visualization engine enables rapid risk isolation, utilizing the Matrix view for immediate visual triage of performance outliers and the Table view for exact data precision and compliance audits.
Direct Operational Transition: The integrated workflow ensures that board-level reporting and technical remediation utilize the exact same source of truth, leveraging the Executive Summary Pane to transition immediately from high-level review to asset-level technical action.