Acuity Risk Management Launches STREAM® Cloud

Acuity Risk Management Ltd (www.acuityrm.com), the software firm specialising in cybersecurity Governance, Risk and Compliance (“GRC”), is pleased to announce the launch of STREAM® Cloud, a new cloud-native edition of its award-winning STREAM® integrated risk management platform. STREAM® Cloud is designed to provide organisations with rapid, guided access to cyber risk management capabilities without the complexity typically associated with enterprise GRC deployments. It complements the Company’s existing STREAM® Classic platform, which continues to serve customers requiring deep automation, advanced modelling, and enterprise-scale integrations.

Highlights

Expanded addressable market: STREAM® Cloud targets organisations at the early-to-intermediate stage of their cyber risk management journey, including mid-market organisations and those seeking to establish structured GRC programmes for the first time. This significantly broadens the Company’s addressable market beyond the mature, enterprise-level programmes served by STREAM® Classic. Alliance partners are an important distribution channel, and STREAM® Cloud’s sleek user experience makes it easier for partners to use STREAM as the basis of their service offering. 

Rapid deployment and guided workflows: STREAM® Cloud is designed for fast adoption, with guided workflows that enable customers to achieve practical cyber risk visibility within weeks, rather than the months typically associated with full enterprise implementations.

SaaS delivery model: The product is delivered as a fully managed SaaS solution hosted on Microsoft Azure UK datacentres, offering a lower entry price point and predictable annual subscription pricing structured across three tiers, designed to align with different organisational sizes and requirements. The flexible architecture of STREAM Cloud means that it has the foundation to deliver Product-Led Growth (PLG), which will enable rapid adoption and shortened sales cycles.

Clear upgrade pathway: Customers whose requirements mature over time can migrate seamlessly from STREAM® Cloud to STREAM® Classic, providing a natural land-and-expand commercial model and protecting the customer’s investment in risk data and configuration.

Regulatory tailwinds: The launch is timed to capitalise on strengthening regulatory requirements including NIS2, DORA, the UK Cyber Security and Resilience Bill, and increasing board-level demand for structured cyber risk reporting. These regulatory drivers are creating new demand from organisations that have historically relied on manual processes or spreadsheets for risk management.

Strategic Rationale

The cybersecurity GRC market is experiencing sustained growth driven by an increasing prevalence of cyber-attacks, more stringent regulatory requirements, and greater awareness among boards and senior leadership of the financial and reputational consequences of inadequate cyber risk management.

While STREAM® Classic remains a powerful and differentiated platform for organisations with complex, mature risk management programmes, management identified a significant opportunity to serve a broader segment of the market. Many organisations recognise the need for structured cyber risk management but find enterprise-grade platforms too complex, too costly, or too slow to deploy for their current stage of maturity.

STREAM® Cloud addresses this gap directly. By offering core risk lifecycle management capabilities through simplified, guided workflows, it removes the barriers to adoption that have historically limited the Company’s addressable market to larger, more mature organisations.

The two-edition strategy creates a commercially attractive model: STREAM® Cloud serves as an accessible entry point, while STREAM® Classic provides a natural upgrade path as customers’ programmes mature and their requirements deepen. This land-and-expand approach is expected to improve customer lifetime value and provide a more predictable revenue growth trajectory.

Product Overview

STREAM® Cloud provides the following core capabilities:

Risk lifecycle management – core capability for identifying, assessing, treating, and monitoring cyber risks in a structured, auditable framework.

Guided workflows – step-by-step processes that enable organisations to build and operate a risk management programme without requiring specialist GRC expertise.

Simplified reporting and dashboards – clear, actionable views of risk posture designed for CISO and board-level communication.

Lightweight integrations – connectivity to support data import and basic interoperability with existing security tooling.

Pre-configured content – including risk catalogues, control frameworks, and assessment templates aligned to widely adopted standards and regulations.

By contrast, STREAM® Classic continues to offer both on-premise and SaaS deployment, advanced automation, extensive enterprise API integrations, deep quantitative and qualitative risk modelling, fully configurable reporting, and the ability to manage large and complex environments. Customers choosing between the two editions are supported by a structured selection process, details of which are available on the Company’s website.

Comment

David Rajakovich, Chief Executive of Acuity, commented:

“The launch of STREAM® Cloud is a significant step in our strategy to broaden the reach of our platform and accelerate new customer acquisition. We have a proven, award-winning technology in STREAM® Classic that serves some of the most demanding organisations in government, defence, and highly regulated industries. STREAM® Cloud now allows us to bring that same depth of expertise to a much wider market – organisations that need practical, structured cyber risk management but don’t yet require the full complexity of an enterprise deployment.

“With regulatory requirements tightening across the UK and EU, and boards increasingly demanding visibility of cyber risk, the timing is right. STREAM® Cloud gives these organisations a fast, guided route into professional risk management, with a clear path to our enterprise platform as their needs evolve. This is a commercially attractive model that we expect to contribute to improved new customer acquisition and recurring revenue growth.”

Enquiries

For further information please contact info@acuityrm.com.

Notes to Editors

About Acuity

Acuity Risk Management Ltd is an established provider of risk management products and services. Its award-winning STREAM® software platform collects and analyses data to improve business decisions and management. It is used by clients operating in markets including government, defence, broadcasting, utilities, manufacturing and healthcare. The Company is focused on delivering long-term, sustainable growth in shareholder value from organic growth and complementary acquisitions.

About STREAM®

STREAM® is Acuity’s integrated risk management platform, providing organisations with a clear line of sight into cyber, IT, and operational risk. The platform enables businesses to make informed strategic and tactical decisions by centralising and automating risk management processes. STREAM® is available in two editions: STREAM® Cloud, for rapid deployment and guided adoption, and STREAM® Classic, for advanced automation, deep modelling, and enterprise-scale cyber risk management.

Ends