Cyber Tzar is a SaaS platform providing advanced cyber risk quantification for enterprise supply chains. It delivers cyber risk scoring, benchmarking, and compliance assessment through big data analytics, AI, and proprietary IP. Its “credit score for cyber” approach supports better risk visibility for insurers, CISOs, and supply chain managers. Cyber Tzar is revenue-generating, scaling through strategic partnerships, and aligned with DORA, ISO 27001, and other regulatory frameworks. Here’s an example “innovation Canvas” for Cyber Tzar.
This article is with thanks to Robin Kennedy and Emma Fadlon of Innovate UK, based on my time with the academic leaders on the 2025 CyberASAP cohort. Thank you!
Contents
A. Opportunity
1. Needs
Organisations struggle to quantify and mitigate cyber risk across complex, multi-tiered supply chains. Existing tools lack actionable risk scoring and fail to account for human factors or resilience indicators.
2. Market
Growing demand across critical national infrastructure (CNI), SMEs, and insurance sectors. Increasing regulatory pressure (DORA, NIS2, ISO 27001, etc.). Initial traction in the UK; scope for international growth.
3. Impact
- Economic: Enables better cyber investment decisions, reduced insurance premiums.
- Societal: Strengthens digital resilience in businesses and communities.
- Environmental: Indirectly supports sustainable digital transformation by reducing operational risk.
B. Offer
4. Approach
A SaaS platform delivering continuous Supply Chain Risk Quantification, Cyber Risk Scoring, and Vulnerability & Compliance Analysis. Based on big data, proprietary IP (patent filed), and AI models.
5. Value Proposition
Like a credit score for cyber risk, Cyber Tzar helps organisations understand and reduce their digital exposure, benchmark risk posture, and ensure supply chain compliance at scale.
6. Experience
Web-based dashboards tailored for C-level, risk managers, and technical teams. Reports and APIs for insurance partners. Ongoing UX refinements and partner-led user onboarding to improve adoption.
C. Capability
7. R&D
Continuous improvement through AI/ML models and behavioural risk analysis. Collaborations with Aston University and Psyber Inc. to integrate human factors into cyber risk assessments.
8. Operations
Built using robust tech stack: Ruby on Rails, PostgreSQL, Python, ELK, Redis. Deployed on scalable cloud infrastructure. Early-stage ops lean but growing through strategic hires and partner networks.
9. Finance
Revenue-generating from insurance, retail, education, and defence sectors. Scale-up capital sought via FounderCatalyst and Slush exposure. Clear route to profitability via recurring SaaS and data licensing.
10. Leadership
Founder-led team with deep expertise in cybersecurity, government, and enterprise systems. Advisory from UK cyber leaders. Neurodiverse team enhances creative problem-solving and resilience.
11. IP
Trade secrets and proprietary scoring models developed internally. Emerging IP portfolio from risk models and dashboard architecture. Potential for joint IP with academic partners. Clear route to future patents
12. Rules
Compliance with GDPR, ISO standards, and sector-specific regulations. Active tracking of DORA, NIS2, and insurance sector mandates. Legal support for IP and data protection.
D. Next Actions
- Finalise MVP of CyberRiskCompare.com and enhance UX — underway
- Founders Catalyst campaign to raise expansion capital — underway — get in touch
- Advance human-factor dashboards through integration with Psyber Inc.
- Secure DORA and ISO 27001-aligned certification pathways — underway — contact [at] cybertzar [dot] com for more info
- Build out partnerships with insurers and regulatory bodies — underway
- Academic partnerships with major thought leaders — underway