LOADING…
E2E RiskPLATFORM
Platform  /  Civil nuclear  ·  Sector
Civil nuclear

Sovereign by design,for civil nuclear.

Nuclear licensees and their supply chains under ONR oversight - deployable inside your own Azure tenancy, to OFFICIAL-SENSITIVE.

See the platform
ONR regulatedSovereign deploymentOFFICIAL -SENSITIVE
The brief

Assurance for civil nuclear.

Without E2E Risk
ONR expectations across a regulated supply chain
OFFICIAL-SENSITIVE data you cannot put in just any SaaS
Suppliers assessed inconsistently against SyAPs
Assurance evidence scattered and hard to defend
With E2E Risk
Supply-chain assurance aligned to ONR SyAPs
Sovereign deployment - your tenant, your data residency
Consistent, control-level judgements across suppliers
A defensible evidence base, ready for the regulator
See it

Regulated assurance, on sovereign ground.

NUCLEAR SUPPLY CHAIN · live live
Onboard
Supplier & scope captured
Classify
By sensitivity & role
auto
Assess
SyAPs & CAF-aligned
Review
Independent assurance
review
Evidence
Held in your tenant
Monitor
Kept current, defensible

Regulated assurance, deployable in your own sovereign environment.

How it works

One lifecycle, end to end.

01 Onboard
It starts at intake
New suppliers captured the moment they are engaged.
No more shadow vendors found at audit.
02 Profile
Right depth
Criticality and data exposure set the assessment depth.
Effort lands where the risk actually is.
03 Assess
Native to your frameworks
Assessed against the regimes you answer to, at control level.
Defensible judgements, not a tick-box.
04 Evidence
Capture once
Evidence inherits across every overlapping requirement.
Re-used, not re-collected, each cycle.
05 Remediate
Close the gap
Findings become owned actions with dates.
Progress tracked, not forgotten.
06 Monitor
Stay current
Outside-in signals and review dates keep it live.
You learn before the auditor does.
The difference

Regulated assurance, made defensible.

What you doSpreadsheets + emailE2E Risk
DeploymentShared SaaS, data offshoreSovereign - your tenant, your residency
SyAPs alignmentInterpreted per assessorConsistent and control-level
Supplier evidenceScatteredOne defensible base
SensitivityHandled ad hocClassified and governed
Regulator requestA scrambleA current, defensible pack
Next assessmentFrom scratchA review of what is already there
Where to start

The modules that matter most here.

Supplier Assurance →

Consistent, control-level assurance across the regulated supply chain.

CAF Assessment →

NCSC CAF v3.2 native, aligned to SyAPs.

Secure by Design →

Security built into delivery, evidenced.

Business Resilience →

Continuity and tested recovery for critical suppliers.

Sovereign
deployment in your own tenant
SyAPs
-aligned assurance
1
defensible evidence base
v3.2
NCSC CAF assessed natively
Native to your regimes

Defensible against all of them.

ONR SyAPsNISR 2003NCSC CAF v3.2ISO 27001:2022NIS RegulationsOFFICIAL-SENSITIVE-ready
Next step

Regulated assurance, on your own ground.

A 30-minute walkthrough on regulated supply-chain assurance and sovereign deployment - no slides.

Explore CAF Assessment →