Question 1

What is Apply Cyber?

Accepted Answer

Cyber posture assessment (InsightGrid / CyberScore). Policy & governance automation (GovernAI). Vendor & supply chain risk (Secure Cohort). Threat intelligence & incident automation (DefendAI). Compliance automation & evidence management (AutoCert). Cross-framework alignment (Matrix AI). It replaces 3–6 point tools with one integrated ecosystem.

Question 2

Is Apply Cyber compliance-only?

Accepted Answer

Posture + misconfiguration scanning. Third-party/vendor risk management. Threat intelligence and response workflows. Document automation & policy generation. Multi-framework continuous compliance. Think beyond Vanta/Drata → Cyber + GRC + Threat + TPRM + AI in one.

Question 3

Do you require agents?

Accepted Answer

No for cloud (AWS, Azure, GCP). Deep endpoint telemetry. Certain OT/ICS environments. Legacy systems. We will advise case-by-case

Question 4

Does Apply Cyber work for on-prem environments?

Accepted Answer

Local connectors. Log collectors. SIEM integrations. API ingestion. CSV evidence ingestion

Question 5

Can I mix modules across tiers?

Accepted Answer

Foundation + DefendAI standalone. Growth + Additional frameworks. Enterprise + Data residency expansions

Question 6

What happens if I exceed limits?

Accepted Answer

Upgrade tiers. Add capacity bundles. Purchase individual add-ons. No forced upgrades

Question 7

How many team members are supported?

Accepted Answer

Unlimited users per organization. No per-seat billing

Question 8

Do dashboards change per user role?

Accepted Answer

Role-based visibility. Least-privilege access. Internal + external stakeholders. Auditor view. Vendor view

Question 9

Do you support multiple business units or subsidiaries?

Accepted Answer

Multi-BU governance. Multi-jurisdiction data residency. Multi-tenant org structures. Internal + external auditor collaboration

Question 10

Is annual billing cheaper?

Accepted Answer

All annual subscriptions include approx. 1 month free

Question 11

Do you offer refunds?

Accepted Answer

7-day refund guarantee on annual subscriptions

Question 12

Can I downgrade?

Accepted Answer

Downgrades apply at end of billing cycle only

Question 13

Do you offer MSP or reseller pricing?

Accepted Answer

Partner tiers. Volume pricing. White-label licensing. Enterprise tenancy models

Question 14

Is there a penalty for early cancellation?

Accepted Answer

No penalties. Partial refunds not issued for active terms. Add-ons prorated until end of cycle

Question 15

Which frameworks are supported?

Accepted Answer

ISO 27001. SOC 2. NIST CSF. Essential 8. PCI-DSS. GDPR. HIPAA. NZISM. ISM (AU). NIS2. DORA. Sector-specific frameworks – On Demand

Question 16

Can I add multiple frameworks at Growth?

Accepted Answer

$500/month each. $1,200/month bundle of 3

Question 17

Does Apply Cyber handle evidence?

Accepted Answer

Upload. Tagging. Mapping to controls. Auditor access. Control inheritance. Framework deduplication

Question 18

Do you provide certification?

Accepted Answer

We automate readiness & evidence. Certification issued by accredited assessors

Question 19

What is DefendAI?

Accepted Answer

Incident response workflows. Threat intelligence ingestion. IOC generation. CVE context. Case management. Response playbooks

Question 20

Is it a full SOC?

Accepted Answer

Integrates with MDR/MSSP partners. Ingests SIEM data. Enriches alerts with CTI/IOC. Automates investigation & mitigation

Question 21

Do you provide CTI feeds?

Accepted Answer

Standard feeds in Growth. Premium feeds in Enterprise

Question 22

What is Secure Cohort?

Accepted Answer

Vendor posture insights. Automated OSINT baseline. Compliance info. Remediation tracking. Vendor scoring

Question 23

Is vendor data verified?

Accepted Answer

Self-declared attestations. OSINT. CTI signals. Cloud posture indicators

Question 24

Do vendors pay to onboard?

Accepted Answer

No — vendors onboard at no additional cost

Question 25

Where is data hosted?

Accepted Answer

AU. NZ. EU. Singapore. India. US. Multi-region deployments

Question 26

Do you support on-prem or sovereign deployments?

Accepted Answer

Available in Enterprise tier

Question 27

Do you store credentials?

Accepted Answer

OAuth. Scoped access tokens. Cloud IAM roles. Zero-trust integration

Question 28

How is sensitive data protected?

Accepted Answer

ISO 27001:2022 compliant ISMS. Encryption at rest & in transit. Key rotation. Levelled access control. Internal zero-trust posture

Question 29

Why is Apply Cyber cheaper than competitors?

Accepted Answer

Agentless. API-native. Continuous posture. Not consulting-based. Not seat-based

Question 30

Why not use Microsoft security tools?

Accepted Answer

Limited stack coverage. No framework automation. No vendor risk. No CTI & incident automation. No auditor-ready evidence

Question 31

Will I replace my existing auditor?

Accepted Answer

Auditors still certify. Audit time reduced by 70%

Question 32

Can my MSSP use this?

Accepted Answer

Multi-tenant onboarding. SIEM/SOC integration. Remediation management. Service bundling

Question 33

Will this replace my SIEM?

Accepted Answer

Adds context. Adds playbooks. Adds framework mapping. Adds policy enforcement

Question 34

Will this replace Wiz / Prisma / CrowdStrike?

Accepted Answer

Those are vertical tools. Apply Cyber is a horizontal governance system

Question 35

What happens if limits are exceeded?

Accepted Answer

Warning issued. Add-ons suggested. No surprise billing

Question 36

Do you throttle posture scans?

Accepted Answer

Foundation → Yes. Growth → Capped. Enterprise → Unlimited

Question 37

Do you integrate with SIEM/SOC platforms?

Accepted Answer

Splunk. Sentinel. QRadar. Sumo. Elastic. Custom integrations

Question 38

Do you integrate with CTI feeds?

Accepted Answer

Standard in Growth. Premium in Enterprise

Question 39

Do you integrate with government threat agencies?

Accepted Answer

Region dependent (AU/APAC). Subject to clearance & agreements

Question 40

How long does onboarding take?

Accepted Answer

Foundation → 30–90 minutes. Growth → 2–5 days. Enterprise → 2–4 weeks

Question 41

Do you offer training?

Accepted Answer

Included in Enterprise. Available for purchase in Foundation & Growth

Question 42

Do you onboard auditors?

Accepted Answer

Auditor access is native. No extra licensing

Question 43

Is this a compliance tool?

Accepted Answer

No — cyber + vendor risk + threat + compliance in one

Question 44

Do you charge per user?

Accepted Answer

Never

Question 45

Can I add another framework later?

Accepted Answer

Yes — $500/month

Question 46

Can I scale vendors?

Accepted Answer

Yes — capacity grows in blocks of 50

Question 47

Does Enterprise include implementation?

Accepted Answer

Yes — onboarding, workshops, reporting & multi-region

FAQ

Frequently Asked Questions

FAQ

Frequently Asked Questions