Portfolio-scale offense.
For organizations testing dozens of applications and thousands of assets — with the deployment, identity, data-handling, and commercial answers your security, IT, and procurement teams need before they sign.
Run it wherever your data has to live
The first question regulated buyers ask. Here are three answers.
SaaS (multi-tenant)
Fastest to value. Fully managed, SOC 2 audited, with isolated tenant data and ephemeral evidence handling.
Single-tenant VPC
A dedicated deployment in your cloud account — your network boundary, our managed control plane.
Self-hosted / air-gapped
Run the full platform inside your perimeter, including bring-your-own-LLM routing for sensitive environments.
Fits your IdP and your roles
- ✓SSO via SAML 2.0 and OIDC
- ✓SCIM user & group provisioning
- ✓Role-based access control
- ✓Full audit-log export to your SIEM
Yours stays yours
- ✓Configurable data residency
- ✓Ephemeral, session-based evidence options
- ✓No training on your data, ever
- ✓Bring-your-own-LLM (Azure OpenAI, Bedrock, self-hosted)
Manage a whole portfolio
Org-level dashboards
Roll up findings across business units and subsidiaries, with per-team views and ownership.
Scheduled testing windows
Define maintenance windows, quiet hours, and per-asset cadences across the estate.
Board-ready reporting
Trend lines, risk posture, and remediation SLAs in a format your leadership already reads.
“The speed is the unlock. Continuous external testing means we find our own exposures before anyone else does — and the deployment fit our security requirements without a six-month review.”
Bring autonomous offense in-house.
Tell us about your portfolio and constraints — we'll line up a programme and deployment plan for launch, and reach out the moment Rift is ready.