Dark Watch

0 reviews

Mitigata is a company focused on simplifying and modernizing cyber insurance for individuals and businesses. It blends cybersecurity risk management with insurance solutions, aiming to protect users from digital threats and financial losses arising from cyber incidents.

Brand Intelligence

0 reviews

Gordon Brand Intelligence by Mitigata is a brand monitoring and digital risk detection platform that helps organisations identify brand abuse across the dark web, typosquatting domains, social media, paste sites, and app stores. From one console, teams can detect impersonation, leaked credentials, phishing domains, and fake profiles in real time, investigate incidents faster, and initiate takedowns when needed. As part of Mitigata’s broader cyber resilience platform, Gordon is built for organisations that want security-led brand monitoring, not just mention tracking.

Gordon Attack Surface Monitoring

0 reviews

Gordon Attack Surface Monitoring continuously discovers and monitors all internet-facing assets associated with an organization, including domains, subdomains, IP addresses, cloud resources, APIs, and third-party integrations, without requiring a pre-configured asset inventory. The platform scans from an external perspective using DNS records, certificate transparency logs, WHOIS data, and passive reconnaissance to identify known and unknown assets, including shadow IT and inherited infrastructure. Each discovered asset is assessed for misconfigurations, exposed services, outdated software, and known vulnerabilities, then assigned a risk score based on severity and exploitability. Users receive continuous alerts when new assets appear, configurations change, or new vulnerabilities are detected. Findings include remediation guidance and a map to common compliance frameworks, including NIST CSF, ISO 27001, PCI DSS, and SOC 2. The platform requires only a domain or email address to begin scanning and deploys without agents or connectors.

Gordon Phishing Simulation

0 reviews

Gordon Phishing Simulation sends realistic, role-specific phishing emails to employees to measure susceptibility to social engineering attacks and deliver targeted training at the moment of failure. Simulations are drawn from real-world attack patterns including credential-harvesting pages, spoofed executive requests, fake invoice approvals, and MFA-bypass lures and are automatically customized by department, job role, and seniority level so each employee receives scenarios relevant to their actual work context. Template difficulty adjusts over time based on individual click history, preventing employees from pattern-recognizing simulations as fake. When an employee interacts with a simulated phishing email, they receive an immediate, non-punitive micro-lesson explaining the indicators they missed. Results are aggregated into a per-user and per-department risk score that tracks behavioral change over time, not just click rates. Administrators can run campaigns on a continuous automated schedule or configure one-off tests, with no manual intervention required between cycles. The platform integrates with Microsoft 365 and Google Workspace for directory sync and direct message injection, supports SSO via SAML, and connects to existing SIEM and ticketing tools via webhooks and API. Reports are exportable and pre-formatted to provide compliance evidence for SOC 2, ISO 27001, and NIST CSF requirements.

Gordon Workforce Risk Management

0 reviews

Gordon Workforce Risk Management identifies, scores, and reduces the cybersecurity risk introduced by employee behavior across an organization, combining phishing simulation data, security awareness training outcomes, and behavioral signals into a single, continuously updated risk score for each employee. Rather than treating training completion as the measure of success, the platform tracks actual behavior change over time, whether an employee who clicked a phishing simulation six months ago still exhibits high-risk patterns, which departments carry disproportionate risk, and which individuals need targeted intervention versus scheduled training. Each employee receives a dynamic risk profile that updates based on their interactions with simulations and training modules, as well as reported threats. Administrators can configure automated training assignments triggered by risk thresholds, so employees who fail a simulation or show declining scores receive relevant, role-specific content immediately without manual admin intervention. Training modules are short-form and mapped to the specific threat category that triggered them, rather than delivering generic compliance content. The platform automatically syncs employee directories from Microsoft 365 and Google Workspace, eliminating the need to manually upload updated staff lists. Reporting surfaces organisation-wide and department-level risk trends in plain-language dashboards designed for both security teams and non-technical stakeholders, including HR, legal, and executive leadership. Gordon Workforce Risk Management integrates with Microsoft 365, Google Workspace, Slack, and common SIEM and HRIS platforms via API and webhooks. Findings map to SOC 2, ISO 27001, NIST CSF, and HIPAA control requirements for compliance reporting.

Gordon SOC Monitoring

0 reviews

Gordon SOC Monitoring provides continuous, 24/7 security monitoring of an organization's endpoints, network traffic, cloud environments, and identity systems, combining automated threat detection with human analyst review and response. The service ingests log and telemetry data from existing tools, including Microsoft 365, Google Workspace, firewalls, EDR agents, and cloud platforms, without requiring replacement of the customer's current security stack. Ingested data is correlated against threat intelligence feeds and behavioral baselines to identify anomalies, lateral movement, privilege escalation, and indicators of compromise. Automated triage filters out noise before escalating validated incidents to analysts, reducing the volume of alerts requiring human review. When a confirmed threat is identified, Gordon analysts investigate, document the incident's scope, and notify the designated customer contact with a plain-language summary of what happened, which systems are affected, and the recommended immediate containment steps. For customers who opt in to active response, analysts can execute containment actions, such as isolating endpoints or blocking accounts, directly, without requiring the customer to act first. Each customer receives a monthly report showing detected threats, response timelines, open risks, and trend data over the previous period. Reports are formatted for both technical and non-technical stakeholders, including IT managers and executives without a security background. Findings are mapped to SOC 2, NIST CSF, ISO 27001, HIPAA, and PCI DSS control requirements to support audit and compliance reporting. Gordon SOC Monitoring deploys without on-site hardware and integrates with existing environments via API connectors and log forwarding. Initial onboarding is completed without manual asset list uploads. The service auto-discovers monitored assets from the connected directory and cloud sources.

Gordon VAPT

0 reviews

Gordon Vulnerability Assessment and Penetration Testing (VAPT) combines automated vulnerability scanning with certified analyst-led penetration testing in a single, continuously available service, eliminating the gap between scheduled assessments and ongoing exposure. The service begins with automated discovery and vulnerability scanning across an organization's external and internal attack surfaces, including network infrastructure, web applications, APIs, cloud environments, and endpoints. Discovered vulnerabilities are validated to remove false positives before results are presented, so every finding in the report reflects a confirmed, exploitable issue rather than a raw scanner output. Certified penetration testers then conduct manual exploitation testing against scoped targets, simulating the tactics, techniques, and procedures used in real-world attacks, including privilege escalation, lateral movement, authentication bypass, injection flaws, and business logic vulnerabilities that automated tools cannot detect. Testing covers external network, internal network, web application, API, and cloud infrastructure scopes, configurable per engagement. Each assessment produces two report formats from the same findings: a technical report with full exploit chains, affected assets, CVSS scores, and step-by-step remediation guidance for security and engineering teams; and an executive summary in plain language for leadership and compliance stakeholders, with a risk rating, business impact statement, and remediation priority order. Both are delivered within the agreed SLA, without requiring the customer to reformat or translate findings. Completed assessments map findings to the requirements of SOC 2, ISO 27001, PCI DSS, HIPAA, NIST CSF, and Cyber Essentials. Customers receive a remediation verification retest at no additional cost to confirm fixes before closing the engagement. All scoping, scheduling, reporting, and retest requests are managed through a self-serve portal, with no email-based coordination.

Gordon Third Party Risk

0 reviews

Gordon Third Party Risk continuously monitors the cybersecurity posture of an organization's vendors, suppliers, and technology partners, combining automated external attack surface scanning with structured risk assessments to produce a current, verified risk profile for each third-party relationship. Rather than relying solely on periodic questionnaires, the platform monitors each vendor's internet-facing infrastructure in real time, tracking exposed services, misconfigured assets, certificate issues, known vulnerabilities, and dark web mentions and updates each vendor's risk score automatically as their external posture changes, without waiting for the vendor to respond to an assessment request. Questionnaire-based assessments are available for due diligence workflows and are pre-mapped to SIG, NIST CSF, ISO 27001, and CAIQ frameworks, with automated reminders and evidence collection to reduce manual follow-up. Each vendor receives a risk tier based on both their live external exposure and their completed assessment responses, combined into a single score that reflects the current state rather than a point-in-time snapshot. Risk scores are updated continuously as new vulnerabilities are discovered or remediated, and alerts are triggered when a vendor's posture changes materially, rather than on a weekly refresh cycle. Reporting is formatted for multiple stakeholders: security teams receive technical findings and remediation details; procurement, legal, and compliance teams receive plain-language risk summaries and due diligence documentation; and executives receive portfolio-level dashboards showing concentration risk, unreviewed vendor exposure, and trends over time. All findings map to the control requirements of SOC 2, ISO 27001, PCI DSS, HIPAA, NIS2, and DORA for audit and regulatory reporting. Gordon Third Party Risk deploys without agents or vendor-side installation. Vendor onboarding is initiated by entering a company name or domain, with no manual asset list required. Directory integration with Microsoft 365 and Google Workspace enables automatic population of vendor relationships from existing procurement and IT records.

Gordon Financial Impact

0 reviews

Gordon Financial Impact quantifies the monetary exposure associated with an organization's current cybersecurity risks, translating technical vulnerabilities, workforce behavior data, third-party exposures, and control gaps into estimated financial loss ranges that business leadership and boards can act on. Rather than producing qualitative ratings, the service calculates probable financial impact per risk scenario including ransomware, data breach, business email compromise, and operational disruption using the organization's asset values, industry loss benchmarking data, threat frequency models, and the live risk signals already captured across Gordon's monitoring services. Financial exposure figures are updated continuously as the underlying risk posture changes, so the number presented to leadership reflects the current environment, not a point-in-time assessment from six months ago. Each risk scenario is modelled to show a probable loss range, minimum, expected, and maximum financial impact alongside the estimated reduction in exposure that would result from specific remediation actions. This enables security leaders to present investment decisions in ROI terms: the cost of a control versus the financial risk it reduces, expressed in currency rather than a risk score. Outputs are formatted in two views: a technical risk register for security and IT teams showing the underlying findings driving each financial estimate, and an executive and board report in plain language showing aggregate financial exposure by risk category, trend over time, and how the organization's risk profile compares to industry benchmarks. Reports include a cyber insurance alignment section mapping current exposure estimates to coverage adequacy, supporting annual policy reviews and renewal negotiations. Gordon Financial Impact integrates with existing Gordon modules, pulling live data from attack surface monitoring, workforce risk, VAPT findings, and third-party risk scores, as well as external asset inventories and HR systems via API. No FAIR expertise or internal risk modelling capability is required to operate the service.