CLUU
Built in LATAM · Trusted globally · NIST CSF 2.0 · DORA · SEC Cyber Disclosure
The Detective for Cyber Resilience

Cyber risk.
In dollars.
Defendable today.

One score, one VaR, one what-if simulator. Cluu turns your cloud inventory into a defendable board report — and into a roadmap your CISO can actually run.

Book a 30-min demo See the product
0.540.71
ICR baseline → 12-month roadmap target
USD 1.34B
FAIR VaR 99% — 100k Monte Carlo iterations
27×
ROI on Resilience — design partner, USD 11.3M scenario
Trusted methodology · NIST CSF 2.0 · · DORA · · SEC 17 CFR §229.106 · · CMF (Chile) RAN 20-9 · · ISO 27001 · · PCI-DSS · SOC 2 (in progress)
The question that lands on your desk every quarter

"What is our cyber risk in dollars?
And what does USD 5M of investment actually buy us?"

Every audit committee asks it. Most teams answer with a 0–100 score nobody can defend in dollars, or a four-month consultancy that costs more than the controls. Cluu replaces both — with the same screen, refreshed every Monday.

01 · Cyber Resilience Index

A single number.
Audit-grade. Boardroom-grade.

cluu.ai/resilience
Current ICR
0.54
Vulnerable
ICR_global = (Σ ICR_i) / n
106 eligible assets · ISO 27001 · NIST CSF 2.0 · CMF RAN 20-9
Five weighted dimensions
Open to inspection. Auditable. Defendable to your CMF / DORA / SEC examiner.
D1 · Antivirus (20%)0.52
D2 · Patching (25%)0.67
D3 · CIA (25%)0.49
D4 · Recovery (20%)0.69
D5 · Residual Risk (10%)0.58
Live today in our LATAM design partner — a USD 2B AUM bank.
02 · FAIR Value at Risk

The same vocabulary
your CFO uses for everything else.

cluu.ai/fair-value-at-risk
Monte Carlo · 100,000 iterations · calibrated to your audited financials
ALE
USD 489M
44.2% net income
VaR 90%
USD 782M
71% net income
VaR 95%
USD 964M
87% net income
VaR 99%
USD 1.338B
121% net income
P99.9
USD 1.833B
catastrophic
Five calibrated attack scenarios — what drives the dollars
Scenario LEF ALE VaR 99%
E1 — Ransomware on Core Banking 1.40 USD 94.6M USD 298.1M
E2 — Customer Data Exfiltration 2.20 USD 118.6M USD 362.1M
E3 — DDoS on APIs / Digital Channels 1.80 USD 61.4M USD 146.3M
E4 — Supply-Chain Compromise 0.80 USD 52.1M USD 211.4M
E5 — Mass GenAI-Enabled Fraud 2.80 USD 113.4M USD 186.0M
Numbers from our LATAM design partner — a USD 2B AUM bank — running in production today.
03 · What-If Simulator

Move the budget.
Watch the score rise.
Before you spend a dollar.

cluu.ai/what-if
Current state
ICR 0.54
Vulnerable
VaR 95%USD 964M
VaR 99%USD 1.338B
ALEUSD 489M
% net income44.2%
Proposed · USD 11.3M
ICR 0.71
Resilient · ROI 27×
VaR 95%USD 347M ▼ 64%
VaR 99%USD 531M ▼ 60%
ALEUSD 152M ▼ 69%
% net income13.7%
Resilience ROI
27×
(ALE_current − ALE_proposed) ÷ Investment
Selected initiatives (5)
  • — EDR / AV on 40+ critical assets
  • — Emergency patching campaign
  • — MFA on privileged access
  • — EOL systems isolation
  • — SIEM 24×7 on vulnerable assets
One screen. Your CISO does what used to take a USD 300K consultancy and three months.
How an investigation runs

From kick-off to the first board pack.

01 Week 1–2

Connect

A read-only AWS role. CloudTrail, Config, VPC Flow. Nothing leaves your tenant.

  • · IAM role installed
  • · Cyber inventory baselined
  • · First ICR scan · < 5 min
02 Week 3–6

Investigate

The Investigator narrative ranks every finding, names the responsible owner, and prices it.

  • · FAIR Monte Carlo calibrated
  • · Five scenarios priced
  • · ICR baseline locked
03 Week 7–12

Defend

Move the budget in the What-If, ship the initiatives, hand the board pack to your regulator.

  • · What-If scenarios saved
  • · Board PDF generated
  • · CMF / DORA / SEC zip ready
What you can expect

First 90 days. First year.
Numbers, not promises.

First 90 days
  • ICR baseline locked with trend line
  • FAIR VaR delivered to the AC committee in week 4
  • What-If roadmap signed off with the CFO
  • First board PDF ready for the quarterly review
  • ICR ≥ 0.62 typical after first patching wave
First year
  • Net Revenue Retention 130% (we grow inside the same logo)
  • ICR ≥ 0.70 — out of the 'Vulnerable' band
  • Cyber risk in dollars on every quarterly board pack
  • Evidence ZIP ready for CMF / DORA / SEC examiners
  • Resilience ROI documented per initiative — defendable in dollars

Cluu replaces an $300K, 4-month consulting engagement with a screen we open every Monday. The Resilience Score and FAIR VaR will be in your quarterly board packs by default now.

— Customer, Chilean financial institution (USD 2B AUM)
Reference call available under MNDA, on request.
Pricing & business model

Per cloud usage. Per scenario priced.

Bottom-up to 1.5–2% of the cloud spend you protect. Self-serve through AWS Marketplace at the entry tier; field-sales for regulated workloads.

Starter
Monthly and Yearly Plan
Up to USD 1M of protected cloud spend
  • — Cluu FinOps or CyberIntelligence only
  • — Up to $500K managed cloud spend
  • — Email support · self-serve onboarding
  • — Best for: piloting Shadow AI Discovery
Start pilot
Most popular
Pro
Monthly and Yearly Plan
Up to USD 5M of protected cloud spend
  • — CluuFinOps or CyberIntelligence · full feature set
  • — Up to $1M managed cloud
  • — + Egress detector · Identity graph · CI gate
  • — + SaaS reconciliation · Dedicated CSM · 99.5% SLA
  • — Best for: most mid-market customers
Book Pro demo
Enterprise
Yearly Plan
Multi-entity · regulated workloads
  • — Cluu FinOps + Cluu CyberIntelligence
  • — Multi-entity · RBAC · audit log
  • — Custom Initiatives · Custom Regulatory Packs
  • — Dedicated success engineer · quarterly board pack
  • — Best for: regulated and multi-entity
Talk to sales
Gross margin 82%
NRR target 130%
Payback 11 months
Frequently asked, plainly answered

What buyers actually ask us.

"Can we not just build this internally?" +

Sure — but you'd be replicating three years of work: CloudTrail ingestion, an LLM narrative engine, FAIR Monte Carlo, controls mapped to regulators. Most internal attempts stall at the live-inventory stage. Buying us is ~18× cheaper.

"What about the security of our data?" +

Read-only IAM role. Tenant-bounded perimeter. SOC 2 Type II in progress. Encryption at rest and in transit. We never store raw payloads — only metadata and aggregates.

"AWS only?" +

AWS-first today; FOCUS-1.0 ingestion plus Azure / GCP on the v2 roadmap (H2 2026). Most LATAM customers are AWS-majority.We can deploy the solution in the private cloud of our customer, but it has costs and support implications. For that, we may have a talk.

"How do we leave if we change our minds?" +

Standard 30-day exit clause. We export your full ICR history, FAIR calibrations, and What-If scenarios as JSON/CSV. No lock-in design.

"Is ICR an audited methodology?" +

ICR is a weighted composite over NIST CSF 2.0 dimensions, with weights documented and adjustable. Every score is reproducible from the underlying inventory — defendable to a CMF, DORA or SEC examiner without a black box.

"What if our FAIR numbers are wrong?" +

Every distribution is editable — LEF, ALE, contact frequency, threat-event frequency. We ship sensible defaults from public data + your audited financials, then your team calibrates. The full Monte Carlo is rerun in seconds.

Open a 30-day pilot

Find every risk.
Quantify it. Defend it. Solve it.

One read-only role. Five minutes to the first ICR. Four weeks to the first FAIR VaR delivered to the board.

No spam. No call from a sales bot. A 30-minute walkthrough with a human.