Acuity Risk Management

Fast, flexible, scalable Cybersecurity GRC software

STREAM provides your business leaders with up to date, actionable information on your cybersecurity compliance and risk status in language that the business understands.  Our innovative business model allows you to quickly configure your own GRC solution and prove the benefits before expanding across your enterprise. You can download our free single-user edition, watch the on-line training and make a start in getting real value from your GRC.

Find out more


Security Operations, Analytics and Reporting software

Addressing the need for SOAR technologies, STREAM enables security operations teams to automate and prioritize operational activities and report data to better inform business decision making. STREAM's unique asset-based approach allows data from multiple security technologies to be rationalized in business terms with integrated action management and workflow.

Find out more

The STREAM Software

STREAM is an expertly engineered software solution available on - premises or as hosted 'software as a service'.  Using a unique asset-based approach, STREAM holds and cross-relates frameworks of cybersecurity objects (assets, threats, vulnerabilities, controls, metrics, indicators of compromise, incidents, near-misses etc.) to frameworks of business objects (processes, functions, projects, regions etc.).  This repository of cybersecurity data from multiple sources is used by STREAM to provide actionable operational analytics and business risk reporting on cyber security status.

The STREAM Product Portfolio

The STREAM Product Portfolio consists of the STREAM software, pre-configured Application content and Productivity Utilities. Multiple editions of the STREAM Single-User (SU) and Multi-User (MU) software are available to match your requirements and budget. Pre-configured Application content includes catalogues of controls, risks, asset classes and assessment schemes with various mappings which can be uploaded to the STREAM software. Productivity Utilities allow you to quickly and easily upload your own content to the STREAM Software. Acuity provides optional additional configuration services to create additional client-specific content and mappings, interfaces with external datasources and customized workflow and reporting.

Uses of STREAM

STREAM, provides real-time cybersecurity GRC and SOAR technologies in a single solution with integrated action management, workflow and reporting.  Use cases include automation for cybersecurity compliance, risk management, asset - based threat and vulnerability management, incident management and risk – based prioritization of operational cybersecurity activities.   STREAM integrates cybersecurity risk management seamlessly with Enterprise Risk Management, including business continuity, health and safety, environmental, supply chain and reporting of material business risks.  

Business Benefits

STREAM transforms cybersecurity data into actionable cybersecurity information reported in the language of Enterprise Risk Management which business leaders can understand.   At a glance real-time views of cybersecurity status allows business managers to answer the big questions: what are our current levels of cybersecurity risk across the Enterprise, are they tolerable and if not what is our prioritized response?   Benefits include reduced likelihood of costly breaches, better decisions on resource allocation and enhanced reputation with customers, suppliers and other stakeholders.

Low Implementation Risk

Implementation of GRC and SOAR technologies can in itself be a high risk project with multiple stakeholders to satisfy. A STREAM solution from Acuity minimises this risk by allowing you to quickly and easily configure the software to your specific requirements, try it out on a low cost, entry - level system and prove the benefits before rolling out across your organisation

On-line Training

Comprehensive and free on-line user and administration training is available to all licensed users allowing you to train yourself and refresh when needed. 

Customer-specific training

Our training courses can be tailored to match customers' specific STREAM configurations and can be delivered on-site, by web meeting or as computer - based training. 

For further information or a quote

contact us

More from Acuity Risk Management

Organisations using Acuity products

  • The Central Bank of Lesotho has been using STREAM to support its Enterprise Risk Management since 2012.  The Bank started initially with Acuity’s free single-user Edition of STREAM extending in early 2014 to a 5 concurrent multi-user Edition and then again to a 10 concurrent user system in 2015.  Acuity recently provided on-site training in to the ERM Team and senior management briefings.  In general we found that the training was well organized and easily followed by all attendees. Relevant training material was sent ahead of schedule to allow adequate reading time prior to training taking place meaning consultancy time on-site was well utilized. The consultant from Acuity Risk Management overall was excellent and delivered the desired objectives that were set out around the needs from the Central Bank of Lesotho.

    Teboho Mpheteng (Mr)

    Enterprise Risk Management (ERM)

  • From the onset of the implemention of our ISMS, we needed a system for effectively managing our information assets, risks, controls and events, while being intuitive for staff to maintain; and evidencing compliance with ISO 27001 to a wide range of stakeholders. We are now upgrading our ISMS to ISO27001:2013 and we are sticking with our STREAM implementation. STREAM covers all our requirements, and provides scope for further expansion across the organisation.


    Acuity have been an exemplary supplier, with passionate and extremely knowledgeable individuals, dedicated to providing prompt customer support. 

    Andrew Glencross

    NHS Wales Informatics Service

  • By placing STREAM at the heart of our information security risk management programme we have been able to more easily and effectively demonstrate, as well as manage, compliance to ISO 27001. Having the ability to see the effect that a threat has in real time on the business overall. Information Security Risk profile is not only a valuable feature but increasingly, it is an essential one. The level of detail STREAM offers in managing risks cannot be replicated in a spreadsheet driven risk programme and our business is now looking at implementing STREAM to manage all other forms of risk that the business faces. 

    Graeme McGibbney

    Lifestyle Group

Ready to watch a demonstration or try STREAM?

Watch a video demonstration or download the FREE single-user edition of STREAM and start the journey to real improvements in your GRC capability

Watch a demo Try STREAM free