LensSee the real state of your insider risk program.
An adaptive insider risk maturity assessment for leadership and domain owners. It measures whether the program works in practice, not just whether one exists on paper.
Program maturity across 9 axes
No structured starting point
Most organizations know insider risk matters. Few have a diagnostic that covers the full program, not just the detection layer.
Fragmented ownership
Insider risk spans Security, HR, Legal, and IT. Each function sees a slice. Nobody has the full picture.
No board language
A maturity score alone does not move budget. Translating program gaps into financial exposure is the missing step.
Growing pressure, no roadmap
Boards, auditors, clients, and internal stakeholders expect a documented program. Most organizations still lack a clear picture of where they actually stand.
Not a questionnaire. A diagnostic.
Six structural differences that change what the results are worth.
Measures the whole program
Nine axes, from governance to wellbeing. A detection-only score describes one layer of a nine-layer program.
Evidence confidence alongside every score
Claim vs. proof. A parallel confidence score runs with every maturity score, so results are defensible, not self-certified.
Questions go to the right people
The CISO does not answer DPO questions. Each module routes to the function that can actually answer it.
Delivers the board number
Annual Loss Expectancy per scenario, calibrated to sector and size. The output that moves budget conversations.
A program profile, not just a level
The output shows the shape of the program: which axes are strong, which are weak, and what that means for investment.
Independent recommendations
Belfort Advisory does not sell monitoring software. Recommendations are shaped by maturity evidence and operating reality.
Nine axes. The full program.
Most assessments invest in one or two. Belfort Lens measures all nine, including two that no other assessment addresses.
Governance
Executive ownership, charter, risk appetite, board engagement
Execution
Operational delivery, program cadence, accountability
Technology
DLP, identity, access management, detection, data controls
Legal & Ethics
Proportionality, lawful basis, defensibility, governance alignment, whistleblowing and integrity
Human Factors
Screening, culture, awareness, workforce lifecycle
Visibility
Logging coverage, behavioral analytics, alert triage
Response
Incident management, forensics, containment, recovery
Friction
Whether your controls create the conditions they aim to prevent
Wellbeing
Psychological safety, burnout signals, workforce trust
Structured, cross-functional, and deliberately thorough.
The benchmark is a practical starting point. The broader assessment still requires time, evidence, and input from the people who actually run the program.
Scoping
Sector, size, operating model, and risk priorities shape what follows
Rapid Benchmark
Strategic snapshot across all nine axes, typically completed in one focused sitting by a senior sponsor
Deep Dive
Routed to domain owners. Expect multiple contributors, evidence gathering, and more time investment
Specialist
Auto-surfaces when a domain scores below threshold. Depth only where warranted
CISO / Security
Program governance, threat model, detection, response
Legal / DPO
Monitoring lawfulness, proportionality, investigation governance
HR / CHRO
Culture, wellbeing, lifecycle, awareness
IT / IAM
Access management, data classification, technical coverage
What you say you do. What you can prove you do.
A confidence score runs alongside every maturity score. High maturity with low evidence is a finding.
A typical self-assessment
Belfort Lens
Evidence Confidence Score (example)
Board-ready outputs. One assessment.
The benchmark produces an initial results set. The full assessment adds cross-functional depth, stronger evidence, and more precise actions.
Executive Summary
Decision-ready narrative with the main findings, implications, and next-step priorities. Exportable as PDF or DOCX.
9-Axis Deep Dive
Declared vs. evidence-verified scores for each axis. Radar visualization of the program's shape.
Risk Quantification
Annual Loss Expectancy per insider risk scenario, calibrated to sector and size. The board number.
Action Plan
Vendor-neutral recommendations with effort, cost range, and time-to-impact. Filtered to your risk appetite.
Jurisdiction Readiness
Per-country legal posture for monitoring activities across EU, UK, and global profiles.
Program Profile
The shape of the program, what that pattern means, and what will actually move it.
Built for programs ready to be looked at honestly.
CISOs and security leaders
Building or stress-testing an insider risk program, with outputs that work at board level.
Risk, compliance and integrity leaders
Building a clearer evidence-backed view for leadership, oversight, and internal challenge rather than relying on self-assessment alone.
Legal and DPO teams
Validating that monitoring is proportionate and legally defensible under NIS2, DORA, and GDPR enforcement.
Organizations under pressure
M&A, workforce change, internal incidents, or heightened scrutiny. Best suited to teams willing to involve the right stakeholders rather than treat this as a lightweight survey.
Start with a scoped benchmark.
The benchmark can be completed in one focused session. The broader assessment requires real time from the right stakeholders and should be treated as program work, not a five-minute quiz.
Belfort Advisory · Request Belfort Lens access
© 2026 Belfort Advisory BV. All rights reserved.
LensInsider Risk. Practitioner-built.
Belfort Advisory works with organizations building and maturing insider risk programs. Assessment, advisory, and program design grounded in practitioner experience, not product sales.
belfort-advisory.com →Assessment design grounded in practice
The methodology comes from experience building insider risk programs, not from a software roadmap. Recommendations are made from the evidence and the operating model in front of you.
Built for complex operating reality
The Legal axis and jurisdictional outputs exist because insider risk programs have to work across governance, privacy, workforce trust, and operational decision-making at the same time.
The full program, not a slice of it
Insider risk is a people problem with technical dimensions, not the other way around. Belfort Lens measures the full scope in a single adaptive engagement.