NURA — Compliance Intelligence Platform

NURA

Compliance Intelligence Platform

WE Org Corporation

Production · All Entities

Live · refreshed 12s ago

Compliance Health Score

847/1000

Strong+12 this week

73th percentile · Financial Services peers

Controls Passing

184/197

93% coverage

Open Violations

2 critical4 high7 medium

Systems Monitored

All connectors healthy

Evidence Freshness

98%

Within SLA window

Framework Coverage

SOC 2 Type II

96%

Audit Ready64 controls

ISO 27001

91%

Audit Ready93 controls

NIST 800-53 (Moderate)

88%

In Progress287 controls

PCI DSS 4.0

94%

Audit Ready41 controls

HIPAA

89%

Gaps Identified54 controls

Ghana Data Protection Act

92%

Audit Ready38 controls

What Needs Your Attention

Severity

Control / Impact

Scope

Owner

Action

Critical

UCL-ACC-003Multi-factor authentication

12 admin accounts on Adisa Production can be accessed without MFA. Direct exposure to credential theft and unauthorized financial transactions.

Detected 4 days ago · Suggested: Enforce MFA via Okta policy enforcement

3 systems · 12 users

IT Security · Sarah Mensah

Critical

UCL-FIN-003Segregation of duties — payroll

Same user created and approved 2 payroll runs totaling $847,200. Material SOX violation risk.

Detected 2 days ago · Suggested: Reassign approver role · Review affected runs

Adisa Production · Finance module

Finance Controller · Kwame Asante

High

UCL-DAT-001Data classification & encryption

3 S3 buckets containing customer PII detected without encryption at rest. GDPR and Ghana DPA exposure.

Detected 1 day ago · Suggested: Apply encryption via AWS Config remediation

AWS Production · 3 buckets

Cloud Infrastructure · Ama Boateng

High

UCL-CHG-001Code review enforcement

8 production deployments in last 30 days bypassed code review. Change management control gap.

Detected 6 hours ago · Suggested: Enable required reviewers on default branches

GitHub · 4 repositories

Engineering · DevOps team

Medium

UCL-ACC-002Privileged access review

Quarterly access review for SAP Production overdue by 11 days.

Overdue 11 days · Suggested: Trigger access review workflow

SAP Production · 47 privileged users

IT Security · Sarah Mensah

Compliance Health by Domain

Access Control

23/25 passingImproving

Financial Controls

18/20 passingDeclining

Data Protection

14/16 passingStable

Change Management

12/13 passingImproving

Vulnerability Management

19/22 passingImproving

Audit Logging

11/11 passingStable

AI Governance

7/9 passingImproving

Supplier Risk

8/10 passingStable

Intelligence

What NURA predicts will fail soon

Quarterly access review for SAP Production due in 14 days — 87% likely to lapse based on historical pattern

87%

Action: Pre-emptively assign reviewer

Cloud config drift detected on 2 services — 79% historical correlation suggests fail within 48 hours

79%

Action: Apply config baseline

AI model drift detected on credit-scoring-v2 — 71% probability of bias threshold breach within 7 days

71%

Action: Trigger model review

Recent autonomous actions

14 minutes ago

✓Auto-resolved: 3 stale access reviews assigned to managers

2 hours ago

✓Verified: Encryption at rest re-enabled after config drift on prod-rds-01

4 hours ago

→Escalated: Production database access change requires manual ISSO review

Yesterday

✓Auto-resolved: 7 dormant Okta accounts deactivated per policy

Regulatory updates

Bank of Ghana

Updated cybersecurity directive published. 2 new control requirements identified.

NIST 800-53

Rev 5.1.1 update affects baseline. 1 control modification required.

EU AI Act

New provisions effective in 23 days. 4 controls need verification.

Live Activity Feed

12s ago

Evidence collectedAWS IAM847 records ingested

47s ago

Control evaluatedUCL-FIN-001PASS

1m ago

Evidence collectedAdisa transaction stream23 events

2m ago

Violation detectedSAP ProductionUCL-ACC-002 — violation detected

3m ago

Evidence collectedOkta directory sync412 users

4m ago

Lucid narrative generatedNURA IntelligenceLucid narrative generated · Executive view updated

5m ago

Control evaluatedUCL-CHG-001FAIL

6m ago

Evidence collectedGitHub branch protection38 repos

8m ago

Auto-remediation triggeredprod-db-01Auto-remediation triggered · UCL-ACC-003

9m ago

Control evaluatedUCL-VUL-001PASS