For detailed information, do not hesitate to contact us:
Phone: +386 1 200 83 00
For ordering the quote follow the link below.
For 30-day ARAT free trial follow the link bellow.
If you want to schedule a conference call, send your contact information to email@example.com.
ARAT, Astec Risk Assessment Tool, is a web application for information risk assessment,compliant to ISO/IEC 27001:2005 and ISO/IEC 27005 standards. Modern ARAT user interface facilitates risk assessment and tracking of actions approved by management to reduce the risks to acceptable level.
The application includes built-in, interrelated catalogue of assets, threats and vulnerabilities, containing over 400 common items in information security risk assessments. The built-in catalogue item relations enable risk assessor to significantly shorten risk assessment scope setup time compared to alternative solutions. More details at FAQ.
Reach, interrelated catalogue of asset, threats and vulnerabilities, with over 400 ISO/IEC 27001:2005 compliant items
Possibility to use various risk assessment methodologies
Tracking the actions taken to reduce the risks
Standard compliant »Risk Treatment Plan« as output, available also as DOC format
The Dashboard with overview and detailed insight into problematic business processes, most risky assets and most effective actions. Reports of estimated risks, actions, due dates, responsible persons and expected costs of actions implementation
Role-based access rights
ARAT distinctive advantage is rich, interrelated catalogue of asset, threats and vulnerabilities, which enables risk assessor to quickly assess typical information security situation. By selecting information asset, the related threats and vulnerabilities are used to auto generate potential risk incidents.
ARAT modern and slick user interface enables intuitive work and naturally guides the user through risk assessment process, yet enables him to select his own workflow. Its main output is standard compliant »Risk Treatment Plan«,and its Dashboard gives the user quick overview and detailed insight into most risky process and assets, and most effective actions.
Although currently supporting ISMS only, ARAT modular structure allows adaptation to other risk assessment methodologies as well.
ARAT as a cloud service enables the customer to start using ARAT services without any installation and setup hassle.
|30-day free trial||30-day free trial||30-day free trial|
Single user with access to full functionality
|Five users with access to full functionality||
Ten users with access to full functionality
|Additional read-only user per Risk Assessment||Three read-only users per Risk Assessment||
Unlimited number of read-only users
»The Agency was looking for risk assessment tool that would provide understandable methodology and transparent results. The ARAT tool turned out to be beneficial in coping with large amount of data and complexity of results.« - Polonca Blaznik, Ph.D., Chief information officer, Environmental Agency of the Republic of Slovenia