01 · Role
Anyone running a SOC.
If you operate a Security Operations Center — or pay for one — AVA fits. The methodology is sector-agnostic. What changes by sector is the regulatory weight and the type of evidence required.
- Enterprise CISO & SOC lead In-house
- Mid-market security manager Lean team
- MSSP operations director Multi-tenant
- MDR provider lead 24×7
A fraction of the analyst hours, the same Investigation Discipline.
02 · Regulation
Where audit weight is heaviest.
Different regulators, same core question — can you defend this verdict in front of an examiner? AVA's evidence chain and audit trail are built for that moment by construction.
- Critical infrastructure NIS2 · sovereignty
- Financial services DORA · FCA · PRA · GDPR
- Healthcare & life sciences GDPR · HIPAA
- Public sector Sovereignty · classified-ready
Listed at peer weight — none ranked first.
03 · Deployment
Where deployment shape matters.
Cloud, on-prem, or private — sovereignty is a constraint, not a compromise. The methodology doesn't change with the deployment shape. The audit trail still resolves. The verdict is still defensible.
Cloud
Multi-tenant SaaS, region-pinned.
On-prem
Single-tenant, your perimeter.
Private / Sovereign
On-prem or private-cloud AVA. Inference partner of your choice — cloud, private,
or sovereign.
Where your data must stay, AVA stays.