Curated demo content by default.
The /demo route group is a public demonstration surface. Its stories, report packs, and portal views are intentionally curated unless a live tenant is explicitly selected.
Current route truth
Representative leadership viewThe public route exists now and shows a representative executive dashboard; the output is synthetic and should not be read as live tenant telemetry.
Strongest first view
Open BoardStart here when you need the strongest first commercial story: risk, consequence, funding decision, and executive ownership.
This dashboard is a synthetic public MRI demo surface. It shows representative executive-facing output and should not be read as a claim that every authenticated CISO workflow or verification path ships identically today.
Demo truth model
Persona switching, posture, blast radius, and remediation delta are anchored to real platform/runtime contracts.
Leadership view of posture movement, attack-path realism, evidence confidence, and the next decision to make.
Report credibility
Every field is shown explicitly. Items not yet provided are labelled (Roadmap, Unavailable, Not applicable, Missing) rather than hidden.
Demo seed — period derived from synthetic profile, not live tenant telemetry
Reference IF-CISO-RUN-MRI-
No prior version to diff — the public demo regenerates deterministically per request.
Named report owner is captured in webapp tenant scope settings — surfaced once a tenant is provisioned.
Approver sign-off block lands with the Audit / PBC workspace milestone.
Substantia signed-evidence chain is exercised in the authenticated webapp, not in the public demo route.
Identity exposure is being driven by cross-platform attack chains bypass individual platform controls, with posture currently at 58/100. If the immediate roadmap closes on time, the projected near-term posture is 71/100 with 73% evidence confidence.
Identity Exposure Score
58
↑Target: <50
30-Day Forecast
71
↓Target: <50
Evidence Confidence
73%
→Target: >80%
Likely Time to Impact
9h
↓Target: >24h
Orphaned Accounts
23
↓Target: 0
Excessive Privileges
74
→Target: <50
Standing admin privilege is still concentrated in a small set of identities, keeping Tier-0 reachable during routine compromise scenarios.
Service accounts and workload credentials are carrying more privilege than the control model expects, increasing silent persistence risk.
Cross-cloud trust conditions are permissive enough to let small lifecycle failures become usable attack paths.
3
Total Paths
3
Tier-0 Reachable
1
No MFA Bypass
9h
Likely Time to Impact
30-Day Forecast
71
projected posture
Confidence: 73%
Projection assumes the immediate roadmap lands and privileged drift stops expanding further.
Decision Brief
Action: Treat identity path reduction as the current executive control objective.
Why now: The fastest route to impact is currently measured in roughly 9 hours, which is shorter than the normal monthly governance cycle.
Time to value: Visible posture movement is expected inside 30 days if the immediate actions are enforced now.
Remove standing admin access (PIM enforcement)
30 days · Owner: IAM
Rotate high-risk service account credentials
14 days · Owner: Security
Review cross-cloud trust relationships
30 days · Owner: Cloud
CISO Dashboard · Prepared by IdentityFirst Ltd · Prepared for Acme Corp · Ref IF-CISO-RUN-MRI- · v1.0 · Confidential - Demonstration Use Only · SAMPLE - SYNTHETIC DATA - NOT FOR DISTRIBUTION