Three-Tier Framework

Battle-tested prioritization with clear SLAs. Each tier represents a distinct risk category with specific remediation timelines and success criteria.

Framework Philosophy

Stop Active Bleeding

Tier 1 addresses immediate threats. Vulnerabilities attackers exploit today for ransomware, data theft, and initial access.

Maintain Compliance

Tier 2 keeps certifications intact. Issues that auditors flag and regulators penalize.

Build Resilience

Tier 3 prevents tomorrow's emergencies. Investments that compound and reduce overall security burden.

1

High Priority

24-72 Hour SLA

Immediate exploitation possible. Vulnerabilities that attackers actively exploit—ransomware vectors, exposed databases, missing MFA on privileged accounts.

  • Critical Open Ports
  • Publicly Accessible Resources
  • Missing MFA on Admins
  • Unpatched Critical CVEs
View details
2

Regulatory

30 Day SLA

Compliance-critical findings. Issues that impact PCI DSS, HIPAA, SOC 2, GDPR, and other frameworks. Failed audits mean lost certifications.

  • Network Segmentation Gaps
  • IAM Compliance Violations
  • Missing Encryption Controls
  • Audit Logging Deficiencies
View details
3

Best Practices

90 Day SLA

Security hygiene improvements. Defense-in-depth enhancements that prevent future attacks and reduce technical debt.

  • Cloud Resource Hardening
  • RBAC Optimization
  • Non-Critical Open Ports
  • Credential Lifecycle Management
View details

Remediation SLAs

TierTimelineEscalationExample Findings
1High Priority24-72 hoursCISO + Exec after 48hRCE, SQLi, exposed admin
2Regulatory30 daysSecurity Manager after 14dMissing encryption, weak passwords
3Best Practices90 daysSprint planning reviewHardening gaps, RBAC cleanup

Security Domains

Each tier categorizes findings across four core security domains for comprehensive coverage and clear ownership.

🌐

Network

Ports, firewalls, segmentation

🔐

IAM

Identity, access, privileges

🗄️

Data

Databases, encryption, DLP

⚙️

Processing

Compute, containers, CI/CD

Ready to implement?

Explore the full framework documentation on GitHub, including integration guides and scanner configurations.

View on GitHub