What is a cybersecurity maturity assessment?

A cybersecurity maturity assessment evaluates how well an organisation's security controls align with a framework such as ISO 27001:2022. It scores each domain from 0 to 4 and produces prioritised recommendations to close gaps.

How long does the Securra assessment take?

The Securra assessment takes 20 to 30 minutes for a first-time run. It covers all key ISO 27001:2022 Annex A domains through approximately 30 focused questions.

Is Securra compliant with FINMA and NIS2?

Securra is designed with FINMA and NIS2 awareness in mind. The assessment maps to ISO 27001:2022 controls and can support FINMA cyber risk disclosures and NIS2 compliance documentation.

Where is assessment data stored?

All assessment data is stored in Switzerland (Swiss data residency). Securra is built with GDPR and Swiss DPA compliance in mind and does not share data with third parties.

ISO 27001:2022 · AI-powered

Know your cyber posture
in 30 minutes

Securra helps SMEs assess their information security maturity, get instant AI-driven recommendations, and generate a board-ready report — no consultant needed.

Free for the first 50 companies · No credit card required

The reality for SMEs today

Cyber threats are no longer a big-company problem

43%

of all cyberattacks specifically target small and medium businesses

Verizon DBIR

60%

of SMEs that suffer a serious breach close within 6 months

National Cyber Security Alliance

CHF 180k

average cost of a data breach for a small business in Switzerland

IBM Cost of a Data Breach Report

14%

of SMEs feel adequately prepared to defend against a cyberattack

Accenture Cybercrime Study

What you get

Everything your SME needs
to take security seriously

No jargon, no 200-page questionnaires. A focused assessment that gives you clear, actionable results.

ISO 27001:2022 questionnaire

Structured questions across all Annex A domains. Takes 20–30 minutes for a first-time assessment.

Maturity score per domain

Visual radar chart showing your posture across security policies, access control, incident management, and more.

AI recommendations

Gap-by-gap analysis with prioritised actions, effort estimates, and tailored guidance for your industry.

Board-ready PDF report

Downloadable report formatted for non-technical audiences — perfect for your board, auditors, or insurance provider.

Annual re-assessment

Track your progress year-over-year and demonstrate continuous improvement to stakeholders.

Swiss data residency

Your assessment data stays in Switzerland. No third-party sharing. Built with GDPR and Swiss DPA compliance in mind.

How it works

From zero to report
in under an hour

Designed for IT managers, ops leads, or founders — no security background required to get started.

Answer the questionnaire

Work through ~30 focused questions covering all key ISO 27001:2022 Annex A domains. Save your progress and return anytime.

20–30 min

AI analyses your gaps

Our engine maps your answers to specific control gaps, assigns a maturity level per domain (0–4), and generates prioritised recommendations.

Instant

Review your dashboard

See your scores on a radar chart, explore recommendations by effort and impact, and build your remediation roadmap.

Interactive

Download your report

Export a branded PDF formatted for board-level communication, auditors, or cyber insurance applications.

PDF export

What you get

A clear picture of your security posture — in 30 minutes

Securra produces a structured maturity assessment across all ISO 27001:2022 Annex A domains, with scores, prioritised gaps, and a downloadable board-ready PDF.

Maturity score (0–4) for each security domain
AI-generated gap analysis with effort estimates
Prioritised remediation roadmap
PDF report formatted for boards, auditors & insurers
Benchmarked against FINMA & NIS2 requirements

Securra Assessment Report ISO 27001:2022

Access Control

3.2

Security Policies

3.6

Incident Mgmt

2.2

Asset Management

2.8

Supplier Security

1.8

Know your cyber posturein 30 minutes