ThreatConnect announced the launch of Risk Quantifier (RQ) 9.0, the first platform to deliver a Continuous Controls Monitoring (CCM) capability that automatically measures control effectiveness, maps it to attacker behaviors, and ties it to real-time financial exposure.
With RQ 9.0, security teams can move beyond assumptions and quarterly snapshots to answer the questions that matter most: How well are we defended right now? What are we exposed to? What would it cost the business if we don’t act?
RQ 9.0 also supports core phases of the emerging Continuous Threat Exposure Management (CTEM) framework by continuously identifying exposures, validating their impact, and enabling prioritized, measurable remediation.
“RQ 9.0 brings defensibility, clarity, and speed to security decision-making,” said Balaji Yelamanchili, CEO at ThreatConnect. “It empowers leaders to cut through the noise, continuously monitor risk posture, and tie every cyber decision to tangible business impact.”
RQ 9.0 delivers four key advancements that set a new standard in cyber risk quantification:
- Continuous Controls Monitoring (CCM): RQ 9.0 automatically ingests telemetry from across the security stack to measure the effectiveness of current defenses against active threats right now – no manual data pulls, no assumptions.
- MITRE Technique-Level Financial Modeling: Every control gap is linked to a financially based risk estimate at the attacker behavior level. This enables financially prioritized actions to be aligned with the MITRE ATT&CK framework.
- Unified Risk View: The new Global Mitigations Dashboard provides a dynamic snapshot of enterprise-wide security coverage, showing which techniques are blocked, which assets are at risk, and what needs action, all in one place.
- Contextualized Threat Intelligence: RQ 9.0 uniquely integrates bespoke, relevant threat intel (not generic feeds) into CCM analytics, ensuring defenses are validated against the threats that matter most to your environment.
Together, these capabilities create an actionable, continuously evolving model of cyber risk, grounded in real-time information from your environment.
According to the company, RQ 9.0 doesn’t just show you where you’re vulnerable; it shows which actions provide you the most significant risk mitigations.
“RQ 9.0 is the first platform to close the loop between threat activity, defensive posture, and financial impact, and to do it continuously,” said Jerry Caponera, GM of Risk Quantification at ThreatConnect.
