SCRAM provides security benchmarking and return-on-security-investment data to CISOs and CFOs so they can better protect their networks, direct security investments, and improve the state of global cybersecurity. The SCRAM cryptographic platform aggregates data from firms without requiring any firm to disclose their own sensitive data to anyone. Born and built at MIT by world-leading cryptographers, risk specialists, and cybersecurity experts, the SCRAM platform provides a safe way to aggregate sensitive cybersecurity defense and loss data in order to understand the state of cybersecurity and guide firm-level security investments.
Our benchmarking platform allows firms to privately compare their security defense posture to other firms both within an industry and across the entire market by using over 100 security controls. SCRAM benchmarks allow firms to identify potential gaps in defensive coverage and evaluate the adoption of emerging technologies and defensive strategies.
SCRAM’s return on investment data helps CISOs and CFOs guide security investments toward security controls with the largest real-world monetary losses resulting from successful attacks. Participating firms receive actionable intelligence and rankings detailing aggregated losses by security control that they can use to target specific security investments.