Model snapshot
Organisation-wide threat and resilience health — updated continuously
What CyberResilience OS™ does
CyberResilience OS™ is a continuous-discovery operating model — not a one-time audit or static checklist. It runs as a living system across Business, Government, and NGO contexts, detecting emerging threats in real time, mapping them to operational risk, linking them to compliance obligations, and generating adaptive response playbooks.
Unlike conventional security frameworks, this model treats cyber resilience as an ongoing operational discipline — embedded in governance, operations, culture, and compliance simultaneously.
Designed by Fadila Lagadien
AI-Enabled Accessibility & Disability Inclusion Specialist
BeAccessible · FAIdila Consulting
hello@beaccessible.co.za
Current discovery cycle
Active phase: Analyse & Classify
Continuous-Discovery Operating Model
Four interlocking phases that run as a perpetual cycle — not a one-time security audit
The four-phase discovery cycle
Five resilience domains
Each phase operates across all five domains simultaneously. No domain is treated in isolation.
Domain 1
Digital & AI
Cyber attacks, AI model manipulation, data breaches, API vulnerabilities, shadow IT, deepfakes, ransomware.
Domain 2
Operational
Business continuity, supply chain risk, third-party exposure, insider threats, physical security, disaster recovery.
Domain 3
Regulatory
Compliance obligations, breach notification duties, cross-border data flows, audit readiness, sector-specific requirements.
Domain 4
Reputational
Disinformation campaigns, deepfake exposure, social media exploitation, public trust events, brand impersonation.
Domain 5
Human & Social
Social engineering, phishing, physical intrusion, vulnerable stakeholder targeting, insider risk, staff wellbeing.
Cross-cutting
Disability & Inclusive Resilience
Accessible incident communications, assistive technology continuity, disability-equitable evacuation, inclusive emergency planning. Required under UNCRPD Article 11.
Sector profiles
The operating model adapts to the distinct risk context, regulatory obligations, and stakeholder needs of each sector
Why one model serves all three sectors
CyberResilience OS™ uses a sector-context engine that weights threat signals, compliance obligations, and response playbooks differently depending on the organisation type. A ransomware signal in a hospital triggers different notifications and containment actions than the same signal in an NGO. The four-phase cycle is universal; the sector profile determines the parameters. This means one operating model can be licensed and adapted across all three markets without rebuilding from scratch.
Live threat feed
Continuously updated signals — classified by domain, severity, and sector relevance
Compliance map
Regulatory frameworks linked to this operating model — South African law and global standards
South Africa
International
Priority gap — UNCRPD Article 11
The UN Convention on the Rights of Persons with Disabilities (Article 11) requires that all persons with disabilities receive equal protection and safety in situations of risk — including cyber incidents, emergencies, and disasters. Current incident response playbooks in most organisations do not provide accessible communications, do not account for assistive technology continuity, and do not include disability-equitable evacuation or alternative channel notifications.
This is a legal and ethical gap — and a significant market differentiator. CyberResilience OS™ is designed to close it through the Disability & Inclusive Resilience cross-cutting domain. Full remediation is on the Q3 product roadmap.
Resilience maturity assessment
Self-score your organisation across six capability areas. Use the sliders — 1 is initial, 5 is optimised.