Question 1

What is TrustCyber?

Accepted Answer

TrustCyber is a Microsoft Security Risk Intelligence Platform that analyzes your Microsoft 365 security posture, identifies exposure across critical domains, and generates a prioritized remediation roadmap aligned with NIST CSF, CIS Controls, ISO 27001, and SOC 2.

Question 2

How long does the security assessment take?

Accepted Answer

The TrustCyber risk assessment takes approximately 7 minutes to complete. No system access or technical expertise is required.

Question 3

What security frameworks does TrustCyber align with?

Accepted Answer

TrustCyber assessments and remediation roadmaps are aligned with NIST CSF, CIS Controls, ISO 27001, and SOC 2 frameworks.

Question 4

Does TrustCyber require access to my systems?

Accepted Answer

No. TrustCyber does not require direct access to your systems or infrastructure. The assessment is completed through a structured questionnaire.

Test Type	Frequency	Scope
Web Application Penetration Test	Annual	Full application including authentication, authorization, and data handling
API Security Assessment	Annual	All public and internal API endpoints
Infrastructure Security Review	Annual	Cloud infrastructure, network segmentation, access controls
Automated Vulnerability Scanning	Weekly	All production systems
Dependency Vulnerability Scanning	Continuous (CI/CD)	All third-party libraries and packages

Penetration Testing

Testing Schedule