PwC developed the Digital Risk Assistant to dramatically reduce the time and complexity involved in cyber maturity assessments.
Traditional assessments rely on reviewing large volumes of evidence, consolidating notes, mapping evidence to control frameworks, manually scoring maturity, and producing traceable outputs.
Using generative AI, the Digital Risk Assistant automates much of this work. The system ingests evidence from multiple file types, maps information against the National Institute of Standards and Technology Cybersecurity Framework (version 1 or version 2) with traceability back to source documents, scores maturity levels and generates client-ready outputs.
The impact is significant. Cyber maturity assessments can now be completed up to 75 per cent faster, reducing manual workload while improving consistency, transparency and auditability.
By combining AI with PwC’s risk expertise, they demonstrate how AI can help organisations strengthen cybersecurity governance while freeing specialists to focus on higher-value analysis and decision-making.