Powered by the Cognisec Intelligent Engine — which continuously collects control evidence from every asset — and built around SEBI’s own governance model: CISO oversees, Compliance Manager submits, Auditor verifies. Full audit trail for every action.
SEBI CSCRF mandates clear accountability. Our platform enforces it technically — no role can access another’s functions.
Full platform oversight. Manage users, approve submissions, validate compliance across all pillars. View risk status and CCI scores. Add/modify CSCRF controls and pillars.
Operational compliance function. Register assets, map controls, submit evidence per pillar, conduct risk assessments. Track submitted and rejected items.
Read-only access to the complete compliance picture. Audit findings, gap analysis, submission crosscheck, risk overview, and artifact review.
The heart of the platform. The engine connects to your environment and continuously collects CSCRF control evidence directly from each asset — servers, network devices, databases, appliances, gateways, firewalls and endpoints. Every finding is mapped to its CSCRF control automatically, signed and timestamped, so compliance reflects the live state of your systems rather than a manual declaration.
Native CCI scoring across every SEBI-defined parameter. Track Governance, Identify, Protect, Detect, and Recover scores separately. Generate SEBI-ready CCI reports for submission.
Assess risk for each asset across every CSCRF function independently. Risk levels: Negligible, Low, Significant, High, Critical — with an overall consolidated risk score per asset.
Upload policy documents, VAPT reports, audit certificates, configuration evidence and screenshots per control. Full artifact trail linked to assets and controls for SEBI audit readiness.
Track SOC type (own, group, Market SOC, third-party), efficacy reporting schedule (6-monthly for MIIs/Qualified REs, annual for Small REs), and SOC KPI submissions to SEBI.