Security Experts:

Connect with us

Hi, what are you looking for?


Management & Strategy

Two Cybersecurity Companies Offering Free Risk Assessments

Endpoint security company Tanium and risk management solutions provider Reciprocity have each announced free risk assessment offerings this week.

Endpoint security company Tanium and risk management solutions provider Reciprocity have each announced free risk assessment offerings this week.

Tanium is offering what it describes as a comprehensive five-day risk assessment that leverages the company’s platform, a cloud-based delivery model, and Python-based script automation.

A risk score is calculated based on data collected about system vulnerabilities, administrative access, compliance, sensitive data identification, encryption and authentication, the risk of lateral movement, and insecure transport security protocols.

Companies that conduct the risk assessment are provided a comprehensive report that includes recommendations on remediation and implementation.

Tanium says CISOs and CIOs can use the assessment to better communicate with business leaders and the board when it comes to risk posture and the steps being taken to improve it.

Reciprocity announced a new community edition of its automated risk observation, assessment, and remediation (ROAR) platform.

Reciprocity Community Edition is a free version of the company’s ROAR platform that includes the ZenComply compliance and audit management solution and the ZenRisk risk management solution.

The platform is fully functional, but it does have limitations — it’s only designed to help organizations achieve SOC 2 compliance.

The company says that, unlike a typical free trial, the Reciprocity Community Edition platform can be used for an unlimited time.

Related: Radiflow Launches Industrial Risk Analysis Platform

Related: Ransomware Risk Assessment Service Aims to Deflect Attacks

Related: Cyber Risk Assessment Firm Sayata Labs Emerges From Stealth

Related: Microsoft Launches Free Zero Trust Assessment Tool

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Risk Management

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...


Twenty-one cybersecurity-related M&A deals were announced in December 2022.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

CISO Strategy

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.