Right inside the CYMETRIS platform: vulnerability management interlocked with TARA analysis. With this far-reaching feature extension, structured vulnerability management can now be integrated directly into the CYMETRIS TARA process.
New vulnerabilities from external sources such as CVE databases, vendor advisories, or internal security analyses can be imported on a per-project basis with the new vulnerability management feature and automatically mapped to the affected components in your own development.
A product-specific risk assessment of the new vulnerability can then be performed — a major advantage when it comes to making well-founded statements about its actual relevance.
As soon as a vulnerability is assigned to a component, CYMETRIS checks whether and how it affects existing attack paths. Relevant vulnerabilities can be fed into the attack path analysis as additional data points — either as a new entry point that did not exist before, or as a new way to circumvent an existing protection mechanism.
With this continuous update of the risk landscape across the entire product lifecycle, keeping the TARA up to date becomes intelligent and, above all, efficient: when the threat landscape shifts due to a newly discovered vulnerability, the TARA reflects this immediately — required mitigation measures can be triggered right away and forwarded with all relevant information attached. The feature is currently available to selected customers in a prototyping phase and will be rolled out globally in the near future.
Accompanying AI assistance functions, which will noticeably simplify day-to-day work in vulnerability management, are also ready to launch.
Stay up to date with CYMETRIS and our software platform. We regularly share new features, updates, and practical expert insights on cyber risk assessment and TARA. Browse all our latest posts right here: NEWS
CYMETRIS has been recognized as an R&D company by Germany’s Research Allowance Authority (BSFZ). This confirms our AI platform for automotive cybersecurity breaks new ground with dynamic attack analysis and collaborative risk assessment. LEARN MORE↗
We’re expanding our team at CYMETRIS headquarters in Munich! We’re currently seeking Frontend Developers, Backend Developers, and more. Please feel free to reach out with a brief message so we can provide detailed information about our open positions. LEARN MORE↗
CYMETRIS is currently finalizing the integration of AI systems into its cyber risk analysis platform via the Model Context Protocol (MCP). This capability enables structured, governed AI support within defined TARA workflow steps—without compromising data sovereignty, traceability, or engineering accountability. LEARN MORE↗
TARA (Threat Analysis and Risk Assessment) provides a powerful methodology for systematically identifying and evaluating cyber risks — throughout product development and across the entire lifecycle.
Our overview page guides you step-by-step through the complete TARA process in line with ISO/SAE 21434: you’ll learn which phases matter, what artifacts play a role, and what truly counts.
What you’ll find here:
Get started now and dive into the full guide.
Our platform continues to evolve with cutting-edge features for intelligent cyber risk modeling/TARA. Want the latest on new capabilities, integrations, and industry developments? Reach out to our team for insights tailored to your needs.
