OwlyScan
What is OwlyScan?
OwlyScan is a deep and dark web monitoring platform. It indexes documents in every format and language, watches your company and your suppliers, and turns hits into alerts and audit-ready reports.
- Continuous watch on you, your suppliers, and their subcontractors
- Credentials, contracts, source code, databases, mentions, and more
- Alerts and reports you can show to auditors, customers, and IR teams
How OwlyScan maps to the requirements
-
01
Align on Gold intent
Gold is not only hygiene: it includes threat intelligence and detection of information leaks.
-
02
Watch the company and the chain
OwlyScan indexes underground sources and alerts when your assets or suppliers appear.
-
03
Prove it in the assessment file
Reports and investigation outputs document external watch and post-incident scoping.
OwlyScan supports selected measures with external monitoring and evidence. It is not a certification, and it does not replace your full compliance programme.
Which requirements OwlyScan covers
Where OwlyScan covers the requirement
| Ref | Domain | What the framework asks | Coverage | How OwlyScan helps |
| Gold · 4.11 | Governance · threat intelligence | Professional or sector-customised security alerts for the company, its sector, and its stack (sectoral CERTs, threat intelligence services — including underground forum watch). | Covered | Continuous deep and dark web monitoring and alerts on your organisation and supply chain, with aerospace-relevant exposure. |
| Gold · 6.5 | Data protection | Enterprise data-protection management including detection of confidential data leaks, roles, and responsibilities. | Covered | Detects credentials, contracts, source code, and databases circulating underground; audit-ready reports as proof of monitoring. |
| General · 8.4 | Supplier requirements | Cybersecurity requirements placed on your own suppliers. | Covered | Watch suppliers and subcontractors continuously; evidence for due diligence and contractual cyber expectations. |
Gold · 4.11 Covered
Governance · threat intelligence
Professional or sector-customised security alerts for the company, its sector, and its stack (sectoral CERTs, threat intelligence services — including underground forum watch).
Continuous deep and dark web monitoring and alerts on your organisation and supply chain, with aerospace-relevant exposure.
Gold · 6.5 Covered
Data protection
Enterprise data-protection management including detection of confidential data leaks, roles, and responsibilities.
Detects credentials, contracts, source code, and databases circulating underground; audit-ready reports as proof of monitoring.
General · 8.4 Covered
Supplier requirements
Cybersecurity requirements placed on your own suppliers.
Watch suppliers and subcontractors continuously; evidence for due diligence and contractual cyber expectations.
Where OwlyScan supports the requirement
| Ref | Domain | What the framework asks | Coverage | How OwlyScan helps |
| Gold · 7.14 | Security event management · investigation | After a security incident (including production/ICS context), investigate whether a malicious element is involved. | Partial | Investigation mode scopes dark web dumps, forums, and archives: what leaked, which assets, publication timeline. Not malware sandbox or OT forensics. |
| Silver · 4.9 | Incident management | Documented process for cyber incident management and escalation (who to call, immediate steps, crisis team). | Partial | Alerts when stolen material surfaces trigger and enrich the escalation path; not the procedure document itself. |
| Gold · 9.7.1 | Security problem management | Documented procedure so the organisation can react quickly and involve the right internal or external people. | Partial | Timestamped, sourced findings ready for IR and external responders; not the hotline organisation chart. |
| Bronze · 4.10 / Silver · 4.7 | Security awareness feeds | Subscribe to vulnerability and security news feeds; follow CERT and vendor alerts regularly. | Partial | Complements CERT/vendor feeds with external exposure intelligence from underground sources. |
| Gold · 4.8 / 2.9.1 | SOC / log analysis | Security operations centre and log analysis tooling for detection, supervision, and forensics. | Partial | External CTI input into SOC and IR workflows. OwlyScan is not a SIEM or SOC platform. |
Gold · 7.14 Partial
Security event management · investigation
After a security incident (including production/ICS context), investigate whether a malicious element is involved.
Investigation mode scopes dark web dumps, forums, and archives: what leaked, which assets, publication timeline. Not malware sandbox or OT forensics.
Silver · 4.9 Partial
Incident management
Documented process for cyber incident management and escalation (who to call, immediate steps, crisis team).
Alerts when stolen material surfaces trigger and enrich the escalation path; not the procedure document itself.
Gold · 9.7.1 Partial
Security problem management
Documented procedure so the organisation can react quickly and involve the right internal or external people.
Timestamped, sourced findings ready for IR and external responders; not the hotline organisation chart.
Bronze · 4.10 / Silver · 4.7 Partial
Security awareness feeds
Subscribe to vulnerability and security news feeds; follow CERT and vendor alerts regularly.
Complements CERT/vendor feeds with external exposure intelligence from underground sources.
Gold · 4.8 / 2.9.1 Partial
SOC / log analysis
Security operations centre and log analysis tooling for detection, supervision, and forensics.
External CTI input into SOC and IR workflows. OwlyScan is not a SIEM or SOC platform.
Proof you can show
Evidence for maturity assessors, primes, and your own security team.
- Threat-intelligence style alerts on underground activity
- Leak detection reports (credentials, documents, dumps)
- Supplier exposure monitoring for primes and OEMs
- Investigation briefings for remediation and CSIRT
Who uses this mapping
- Aerospace suppliers under AirCyber assessment
- CISOs and security leaders
- Primes and procurement watching the chain
- Remediation and CSIRT teams
- Quality and compliance coordinators
EU hosted · Audit-ready reports · Free company check