The Security Posture Maturity Assessment API provides a comprehensive, professional-grade evaluation framework for measuring organizational security maturity across multiple dimensions. This platform enables security teams, compliance officers, and enterprise architects to systematically assess their security posture against industry-standard maturity levels and identify gaps in critical security domains.
The tool evaluates eight essential security domains: Network Security, Cloud Security, Endpoint Security, Identity & Access Management, Data Security, Application Security, Physical Security, and Governance & Compliance. Each domain is rated on a 1-5 maturity scale, providing granular visibility into organizational security strengths and weaknesses.
This API is ideal for enterprises conducting security audits, preparing for compliance assessments, benchmarking against industry standards, and developing strategic security improvement roadmaps. Organizations can track maturity progression over time and generate actionable intelligence for board-level and operational security governance.
{
"assessmentData": {
"network_security": 3,
"cloud_security": 2,
"endpoint_security": 4,
"identity_access": 3,
"data_security": 2,
"application_security": 3,
"physical_security": 4,
"governance_compliance": 2
},
"sessionId": "sess_20240115_acme_corp",
"userId": 12847,
"timestamp": "2024-01-15T14:30:00Z"
}
{
"assessmentId": "assess_67890abcdef",
"organizationScore": 2.875,
"maturityLevel": "Managed",
"timestamp": "2024-01-15T14:30:15Z",
"domainScores": {
"network_security": {
"score": 3,
"maturityLevel": "Defined",
"status": "Moderate"
},
"cloud_security": {
"score": 2,
"maturityLevel": "Repeatable",
"status": "Below Target"
},
"endpoint_security": {
"score": 4,
"maturityLevel": "Managed",
"status": "Strong"
},
"identity_access": {
"score": 3,
"maturityLevel": "Defined",
"status": "Moderate"
},
"data_security": {
"score": 2,
"maturityLevel": "Repeatable",
"status": "Below Target"
},
"application_security": {
"score": 3,
"maturityLevel": "Defined",
"status": "Moderate"
},
"physical_security": {
"score": 4,
"maturityLevel": "Managed",
"status": "Strong"
},
"governance_compliance": {
"score": 2,
"maturityLevel": "Repeatable",
"status": "Below Target"
}
},
"recommendations": [
{
"domain": "cloud_security",
"priority": "High",
"action": "Implement cloud security baseline controls and automation"
},
{
"domain": "data_security",
"priority": "High",
"action": "Establish data classification and encryption standards"
}
]
}
Health Check Endpoint
Verifies API service availability and health status.
Method: GET
Path: /
Parameters: None
Response:
Generate Maturity Assessment
Generates a comprehensive security maturity assessment based on provided domain scores and organizational context.
Method: POST
Path: /api/maturity/assess
Request Body Parameters:
| Parameter | Type | Required | Description |
|---|---|---|---|
| ----------- | ------ | ---------- | ------------- |
assessmentData | AssessmentData object | Yes | Container for all eight security domain scores |
assessmentData.network_security | Integer (1-5) | Yes | Network Security maturity score |
assessmentData.cloud_security | Integer (1-5) | Yes | Cloud Security maturity score |
assessmentData.endpoint_security | Integer (1-5) | Yes | Endpoint Security maturity score |
assessmentData.identity_access | Integer (1-5) | Yes | Identity & Access Management maturity score |
assessmentData.data_security | Integer (1-5) | Yes | Data Security maturity score |
assessmentData.application_security | Integer (1-5) | Yes | Application Security maturity score |
assessmentData.physical_security | Integer (1-5) | Yes | Physical Security maturity score |
assessmentData.governance_compliance | Integer (1-5) | Yes | Governance & Compliance maturity score |
sessionId | String | Yes | Unique session identifier for tracking |
userId | Integer | No | User identifier (optional) |
timestamp | String | Yes | ISO 8601 formatted timestamp of assessment |
Response:
Get Security Domains
Retrieves the complete list of available security domains and their definitions.
Method: GET
Path: /api/maturity/domains
Parameters: None
Response:
Get Maturity Levels
Retrieves definitions and characteristics of each maturity level used in assessments.
Method: GET
Path: /api/maturity/levels
Parameters: None
Response:
| Plan | Calls/Day | Calls/Month | Price |
|---|---|---|---|
| ------ | ----------- | ------------- | ------- |
| Free | 5 | 50 | Free |
| Developer | 20 | 500 | $39/mo |
| Professional | 200 | 5,000 | $99/mo |
| Enterprise | 100,000 | 1,000,000 | $299/mo |
ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.
共 1 个版本