Threat Centre - E2E Risk

Why it's different

Threats that find your suppliers.

Most threat feeds are a firehose disconnected from your supply chain. The Threat Centre links every threat to the suppliers it actually exposes.

Curated threat library

23 threat templates, each mapped to MITRE ATT&CK techniques - maintained, not a raw feed.

Outside-in scanner

A BitSight-style external attack-surface scan - TLS, DNS, headers, exposure - with no agent and no supplier effort.

Automated matching

Each new threat is matched to the exact suppliers it exposes - blast radius in seconds, not a manual trawl.

Risk-signal fusion

Inside-out SAQ answers, outside-in scan results and live threats combined into one supplier risk signal.

Threat-to-remediation

A matched threat becomes a tracked remediation action on the supplier - with an owner and a due date.

Framework-mapped

Every threat and control maps to CAF, ISO 27001, Cyber Essentials and NIST - evidence, not noise.

Always-on intelligence

Fed by the sources that matter.

Not one firehose - curated, deduplicated streams from the authoritative feeds, enriched with exploit-prediction so you act on what is actually being exploited.

NVDCISA KEVGitHub AdvisoriesNCSCMicrosoft MSRCFortinet PSIRTCiscoAppleRed Hatransomware.live

EPSS + CISA KEV prioritised

Every CVE carries an EPSS exploit-prediction score and a known-exploited flag - so you triage what is actually being weaponised, not the whole CVSS pile.

AI summaries & plain-English search

Each threat gets a generated plain-English brief, and you search the library in natural language - “actively-exploited edge-device CVEs”.

Infostealer & breach exposure

Dark-web infostealer credentials, ransomware-leak mentions and IP blocklist hits per supplier - the live external signals that complete the picture your assessment builds.

See it work

One threat. Every exposed supplier.

threat-centre · live matchingLive

T1190 · ATT&CK

Exploitation of a public-facing application

CRITICAL

↓ matched to 3 suppliers in your portfolio

Northwind Pathology Ltd

Unpatched edge appliance · CVE on outside-in scan

Critical

Halcyon Payments

Public admin portal · weak TLS, exposed login

High

Meridian Cloud Services

Internet-facing API · no WAF detected

High

The outside-in rating

A BitSight-class rating, across nine surfaces.

Every supplier is scanned from the outside - no agent, no supplier effort - and scored across nine security surfaces into one grade that sits alongside your assessment and can be published on a shareable trust page.

supplier security rating · outside-inLive

B+

Meridian Cloud ServicesOverall security grade · refreshed continuously · shareable trust page

DNS SecurityA

DNSSEC, open-resolver checks, NS diversity

Email SecurityA

SPF, DKIM and DMARC alignment

Application SecurityB

Security headers, CSP, cookies

System SecurityB

TLS configuration and ciphers

Network SecurityC

Internet-exposed services and ports

Patching CadenceC

Open CVEs and time-to-patch trend

Cyber ReputationA

Spamhaus, Barracuda and abuse.ch blocklists

Breach ExposureB

Infostealer-harvested credentials

Compromised SystemsA

Ransomware-leak and botnet mentions

The problem

A threat feed nobody can act on.

Without E2E Risk

Threat intel arrives as a firehose, disconnected from your suppliers

No outside-in view - you only know what suppliers self-report

When a CVE drops, no one can say which suppliers are exposed

Outside-in tools (BitSight, SecurityScorecard) cost a fortune and sit in a silo

Threats never become tracked actions - they die in an inbox

With E2E Risk

A curated library where every threat is mapped to MITRE ATT&CK

A built-in outside-in scanner - no agent, no supplier effort

Instant blast-radius: which suppliers a new threat exposes, in seconds

Outside-in scanning included - fused with your assessment data, not siloed

Every match becomes a remediation action with an owner and a date

How it works

From a new threat to a tracked action.

Ingest

New threat / CVE

Added to library

Map

MITRE ATT&CK

Technique tagged

Scan

Outside-in sweep

TLS / DNS / exposure

Match

Exposed suppliers

Blast radius

Prioritise

By criticality

& exposure

Remediate

Action + owner

Tracked to closure

Why it's better

A rating tool tells you a score. We tell you what to do.

Capability	E2E Risk	BitSight / SecurityScorecard	Raw threat feed
Outside-in attack surface	Built in, no agent	Core product	Not included
Curated threat library	23 templates, ATT&CK-mapped	Limited	Unstructured firehose
Matched to YOUR suppliers	Automatic blast radius	Per-vendor score only	Manual
Fused with inside-out SAQ	One combined signal	Outside-in only	No assessment data
Remediation workflow	Action, owner, due date	Score, no workflow	None
UK public-sector fit	CAF & CE mapped	US-centric ratings	Generic

Framework depth

One technique, mapped across the board.

ATT&CK T1190

Exploitation of a public-facing application - an exposed, unpatched edge service is compromised.

This single threat maps to

MITRE ATT&CKT1190 - Initial Access

NCSC CAFB4 / C1 - secure config & monitoring

ISO 27001:2022A.8.8 / A.8.9 - vulnerability & config management

NIST CSF 2.0DE.CM - continuous monitoring

Outcomes

Threats turned into action.

live threat feeds, deduplicated

outside-in security surfaces

EPSS

+ CISA KEV exploit signal

A–F

shareable supplier grade

What you get

Intelligence you can act on.

Outside-in attack surface

An external scan of every supplier - TLS, DNS, headers and exposure - with no agent to deploy.

Threat library + matching

A maintained, ATT&CK-mapped library that automatically matches each threat to the suppliers it exposes.

Threat-to-remediation flow

Every match becomes a tracked remediation action on the supplier, with an owner, a due date and an audit trail.

Next step

See your supply chain’s real exposure.

A 30-minute walkthrough on your suppliers - live outside-in scan and threat matching, no slides.

Threat intelligence,fused with supplier risk.