Curated demo content by default.
The /demo route group is a public demonstration surface. Its stories, report packs, and portal views are intentionally curated unless a live tenant is explicitly selected.
These report views are the strongest public expression of what IdentityFirst can show today: board-ready posture summaries, audit-readiness evidence, IAM operations detail, technical findings, and detection-led response context.
The data on this public surface is synthetic. The report structures, business framing, and stakeholder outputs are real product patterns anchored to current MRI demo routes, not placeholder packs or nonexistent exports.
Recommended first view
Board Report
Board, CEO, CFO, and executive sponsors
Board-ready pack with posture trend, financial consequence, and prioritised decisions for leadership review.
Start here when you need the strongest first commercial story: risk, consequence, funding decision, and executive ownership.
Open recommended reportExecutive outputs
Board and CISO leadership views
Assurance outputs
Audit readiness and GRC evidence framing
Operational outputs
IAM operations and technical remediation detail
Security outputs
Threat detection and response storytelling
Freshness and coverage disclosure
The public catalogue is a curated preview of report structure and audience framing. It is useful for comparing stakeholder views, but it is not the same thing as the authenticated product surface. Live delivery remains more complete whenever upstream tenant data, provenance, and export contracts are available.
Public catalogue mode
Synthetic preview content, shaped by live report routes.
Authenticated delivery
Live tenant-aware reports where upstream contracts exist.
Coverage quality
Strongest for reporting structure and framing, thinner on export parity.
Freshness signal
Reflects current demo route patterns, not live customer evidence.
Capability assurance
This catalogue shows real demo routes that exist today in the Next.js product surface. It demonstrates enterprise reporting structure, audience alignment, and decision-support outputs. It does not claim that every downstream delivery path, export integration, freshness signal, or authenticated workflow is already identical in every environment.
Demo truth model
Persona switching, posture, blast radius, and remediation delta are anchored to real platform/runtime contracts.
Board, executive sponsors, and security leadership
Decision-ready reporting for leadership teams that need business impact, posture movement, and the next action to fund or enforce.
Board Report
Board, CEO, CFO, and executive sponsors
Board-ready pack with posture trend, financial consequence, and prioritised decisions for leadership review.
Start here when you need the strongest first commercial story: risk, consequence, funding decision, and executive ownership.
Preview
Representative route preview
Board Report
Audience: Board, CEO, CFO, and executive sponsors
Useful to
Report outputs
CISO Dashboard
CISO, security leadership, and risk owners
Leadership dashboard for posture movement, attack-path urgency, evidence confidence, and immediate control priorities.
Use this after the board pack when security leadership wants more operating detail without dropping into the full technical report.
Preview
Representative route preview
CISO Dashboard
Audience: CISO, security leadership, and risk owners
Useful to
Report outputs
Audit, GRC, legal, and compliance teams
Evidence-led outputs for audits, control mapping, policy enforcement, and measurable readiness improvement.
Audit Readiness
Internal audit, external audit, and compliance teams
Audit-window view of readiness score, evidence gaps, time-to-compliance, and control remediation priorities.
Open this first when the buying motion is driven by audit pressure, evidence gaps, or control-readiness deadlines.
Preview
Representative route preview
Audit Readiness
Audience: Internal audit, external audit, and compliance teams
Useful to
Report outputs
GRC Report
GRC, legal, and policy owners
Governance-oriented compliance output with risk-weighted controls, audit readiness, and evidence-led remediation.
Use this when the buyer cares most about policy, control mapping, and evidence-led governance rather than raw engineering detail.
Preview
Representative route preview
GRC Report
Audience: GRC, legal, and policy owners
Useful to
Report outputs
IAM teams, engineering leads, and operational owners
Operational reporting for lifecycle governance, privilege remediation, and teams that need targeted action instead of generic findings.
IAM Operations
IAM teams, platform engineering, and operations leads
Operational identity report for lifecycle issues, risk concentration, root causes, and targeted remediation actions.
Use this when IAM or operations teams need the practical workload: ownership, lifecycle debt, and operational cleanup.
Preview
Representative route preview
IAM Operations
Audience: IAM teams, platform engineering, and operations leads
Useful to
Report outputs
Technical Report
Engineers, defenders, and identity operators
Finding-level analysis with attack paths, remediation detail, and engineering decision context.
Start here when the room is technical and needs proof depth, attack-path substance, and remediation detail quickly.
Preview
Representative route preview
Technical Report
Audience: Engineers, defenders, and identity operators
Useful to
Report outputs
SOC, IR, and managed security teams
Security operations output for identity-led detection, incident triage, response timing, and containment choices.
Enterprise expansion path
Business-function wrappers
Add dedicated report entry points for HR, Finance, Legal, Engineering, and Operations using the current report surfaces as their evidence base.
Scheduled evidence packs
Turn the strongest public views into recurring exports, review packs, and audit bundles with provenance and approval tracking.
Authenticated delivery parity
Close the gap between public demo views and live portal delivery so the same audience-specific framing exists end-to-end.