The software-based tool provides a framework by which an organization can measure network security according to eight areas: governance, privacy, threat mitigation, transaction and data integrity, identity and access management, application security, physical security and personnel security.

The product, first launched by IBM in February, is priced between US$60,000 to $75,000, depending on the size of the organization, and comes with a user manual and introductory workshop from IBM.