Five specialists.Baseline → governance→ kept current.
NibraSec is not a scanner. Each agent takes a baseline of your business, generates prioritized findings, builds a phased roadmap, and updates it as the regulatory world changes. Compliance, governance, regulatory watch, and audit readiness — under one platform.
Core Compliance Agent
Baseline → prioritized findings → roadmap. Reads your baseline, classifies each AI system by risk, maps it to NCA-ECC / KSA-PDPL / ISO 42001 / NIST AI RMF, and produces a board-ready risk register + 12-month roadmap.
Inputs
- Baseline questionnaire (~30 answers about jurisdictions, systems, controls)
- AI systems inventory (purpose, decision impact, data categories)
- Declared controls + current framework posture
- Grounded knowledge base — PDPL, ISO, NIST, SAMA, NCA, SDAIA
Outputs
- Applicable regulations + high-risk flags
- Per-system risk classification (CRITICAL / HIGH / MEDIUM / LOW)
- Gap assessment — severity, remediation, owner
- Full risk register (likelihood × impact matrix)
Advisory Chat Agent
Bilingual conversational Q&A grounded in your baseline, your systems, and the regulatory KB. Every answer cites the exact clause — no hallucinated regulations, no generic policy speak.
Inputs
- Your natural-language question (EN or AR)
- Your baseline answers + AI systems context
- The full regulatory knowledge base
- Conversation history within the session
Outputs
- Grounded answer with citations to specific clauses
- Links to source documents (NCA-ECC, PDPL, ISO, etc.)
- Follow-up question suggestions
- Full conversation log saved for audit
Regulatory Watch Agent
Daily digest of what changed in your jurisdictions. NCA, SDAIA, SAMA, CST, TDRA, DESC, UAE AI Office, EDPB — we track them so you don't have to. Impact-tagged for your specific portfolio.
Inputs
- Your declared jurisdictions + AI systems
- Daily scrape of regulator publications and gazettes
- Your existing compliance posture (for impact scoring)
- Topic filters you've configured
Outputs
- Daily digest of relevant rule changes
- Per-item impact analysis (high / medium / low)
- Suggested action items + deadlines
- Email + Slack notifications on critical changes
Governance Documents Agent
Drafts policies, procedures, control statements, and evidence templates — matched to your house style and approval chain. Bilingual EN/AR. Audit-ready.
Inputs
- Your baseline + AI systems
- Selected framework (NCA-ECC / KSA-PDPL / etc.)
- Your existing policy templates (if any)
- House-style guide (tone, format, language)
Outputs
- Full policy / procedure documents (3-8 pages each)
- Control statements + evidence templates
- Approval-routing recommendations
- EN + AR versions on request
Audit Readiness Agent
Assembles a complete audit pack — control mappings, evidence index, risk register, DPIA summaries, gap remediation plan — formatted for SAMA, NCA, ISO 27001, or ISO 42001.
Inputs
- Selected audit framework
- All your prior agent outputs (controls, gaps, risks, evidence)
- Selected scope (which systems / business units)
- Auditor format requirements
Outputs
- 60-120 page audit pack (PDF + portal)
- Control mapping table with evidence references
- Risk register snapshot
- Gap remediation plan with owners + dates
Five specialists. One platform.
Subscribe to the $199/mo Sentriq platform and run them on your real baseline with credits — bilingual output and audit-ready citations. Your first month includes 7 free credits to try them.
Not sure where to start? We'll help you — for free.
If you're unsure how to set up your workspace, run your first agent, or which framework to begin with, our team will walk you through it at no charge. No pitch, no commitment.