Cybersecurity Assessment Solution

SBS Cybersecurity

Cybersecurity Risk Assessment

This Work is Under NDA, If you're interested in learning more.

Go to Full Case Study (Password required)

overview

Redesigned a modular cybersecurity assessment platform to support multiple industry frameworks (NIST, CRI, InTREx), simplify complex user workflows, and introduce a freemium model—positioning the product for success after FFIEC retirement.

Impact

95% task success rate.

80% increase of premium module upgrade .

17% increase of overall NPS score.

Role

UI UX Designer - Interaction design, User flow, Information Architecture

Stakeholder

Developers, Project Owner, and Content and Security consultants.

Timeline

Sept 2024 to April 2024

Background & Problem

Cyber Security Assessment is a self-examination tool to help user estimate their organization’s ability to control risk, it is crucial step for the regulation and compliance of the organization every year. So far, FFIEC is the most popular framework.

But with FFIEC set to retire in August 2025, we faced a two-fold challenge:

There’s no 1:1 replacement—so we needed to support multiple new frameworks moving forward.
Our existing platform wasn’t scalable and hard to follow.

All of this led to frustration—for both users and our internal teams—and limited opportunities to introduce a freemium model to support new revenue streams.

Solution Highlight

Scalable Assessment Management

Restructured the system to support multiple assessment types (like NIST CSF, InTREx, CRI), making it easy for users to start, resume, and manage all assessments in one place—without confusion.

Solution Highlight

Simplified Assessment Flow

Redesigned the question experience to reduce overwhelm, group related info clearly, and help users track their progress with ease.

Solution Highlight

Goal Tracking & Insights

Visualized and standardized maturity tiers to support users in analyzing gaps. The maturity analysis diagram enabled users to clearly identify gaps and prioritize strategies after completing the assessment.

Takeaway

I gained valuable experience in collaborating with cross-functional teams and adapting to feedback, which helped refine the design and ensure the successful delivery of the project.

I learned to prioritize user needs in every design decision, ensuring that the final product effectively balances user demands with business goals for a more user-centric experience.