Enter password to view Website Audit
Analysis
Website
ThreatAware
Analysis
Website
ThreatAware
Analysis
Website
ThreatAware
Published on
2026-03-17
For
ThreatAware
Score
49
ThreatAware is an agentless Cyber Asset Attack Surface Management (CAASM) platform that integrates with existing security tools via API to provide complete visibility of every device and user in an enterprise IT estate, validate that security controls are deployed and functional, and automate remediation of security gaps — deployable in under 30 minutes without endpoint agents.
Market
Cyber Asset Management / CAASM / Cyber Hygiene Platform
Audience
CISOs, Head of IT Security, Security Operations Teams, IT Directors — at mid-market and enterprise organisations in retail, financial services, energy, and professional services
HQ
London, United Kingdom
Brand
40
Copy
55
Brand
38
SEO
42
UX
45
Structure
35
Performance
60
Social Proof
62
Freshness
57
Enterprise Readiness
52
Brand
$25M Series A — Not on Homepage
Score
40
Severity
High
Finding
ThreatAware closed a $25M growth round from One Peak approximately 3 weeks before this audit — the company's first-ever external funding after reaching profitability bootstrapped with 100+ clients. This is an extraordinary credibility story: 'bootstrapped to profitability and 100 enterprise clients before taking a single dollar of outside funding' is a vendor evaluation signal almost no cybersecurity competitor can match. Yet the homepage does not feature this milestone in the hero, the social proof section, or any above-fold element. The only reference is a blog post thumbnail ('ThreatAware Secures $25M Series A Funding from One Peak') in the blog roll at the bottom of the page.
Recommendation
Add a prominent callout to the homepage — either a banner or a hero section — anchoring the Two Peak investment story: '$25M raised from One Peak. 100+ enterprise clients. Profitable without external funding until now.' The bootstrapped-to-profitability narrative is ThreatAware's strongest competitive differentiator: it proves the product sells itself, the team is disciplined, and the growth is organic. Enterprise CISO buyers reading this will weight it heavily against VC-backed competitors burning cash to acquire customers.
Brand
$25M Series A — Not on Homepage
Score
40
Severity
High
Finding
ThreatAware closed a $25M growth round from One Peak approximately 3 weeks before this audit — the company's first-ever external funding after reaching profitability bootstrapped with 100+ clients. This is an extraordinary credibility story: 'bootstrapped to profitability and 100 enterprise clients before taking a single dollar of outside funding' is a vendor evaluation signal almost no cybersecurity competitor can match. Yet the homepage does not feature this milestone in the hero, the social proof section, or any above-fold element. The only reference is a blog post thumbnail ('ThreatAware Secures $25M Series A Funding from One Peak') in the blog roll at the bottom of the page.
Recommendation
Add a prominent callout to the homepage — either a banner or a hero section — anchoring the Two Peak investment story: '$25M raised from One Peak. 100+ enterprise clients. Profitable without external funding until now.' The bootstrapped-to-profitability narrative is ThreatAware's strongest competitive differentiator: it proves the product sells itself, the team is disciplined, and the growth is organic. Enterprise CISO buyers reading this will weight it heavily against VC-backed competitors burning cash to acquire customers.
Brand
$25M Series A — Not on Homepage
Score
40
Severity
High
Finding
ThreatAware closed a $25M growth round from One Peak approximately 3 weeks before this audit — the company's first-ever external funding after reaching profitability bootstrapped with 100+ clients. This is an extraordinary credibility story: 'bootstrapped to profitability and 100 enterprise clients before taking a single dollar of outside funding' is a vendor evaluation signal almost no cybersecurity competitor can match. Yet the homepage does not feature this milestone in the hero, the social proof section, or any above-fold element. The only reference is a blog post thumbnail ('ThreatAware Secures $25M Series A Funding from One Peak') in the blog roll at the bottom of the page.
Recommendation
Add a prominent callout to the homepage — either a banner or a hero section — anchoring the Two Peak investment story: '$25M raised from One Peak. 100+ enterprise clients. Profitable without external funding until now.' The bootstrapped-to-profitability narrative is ThreatAware's strongest competitive differentiator: it proves the product sells itself, the team is disciplined, and the growth is organic. Enterprise CISO buyers reading this will weight it heavily against VC-backed competitors burning cash to acquire customers.
Copy
Hero Headline — Tagline Is Sharp, Sub-headline Is Weak
Score
55
Severity
Medium
Finding
The trademarked hero headline 'Know Every Device. Eliminate Exposure.™' is punchy and specific — exactly right for a CAASM product. The sub-headline, however, is generic: 'ThreatAware connects to your existing tools to give you a single, accurate view of every device and validates security controls are installed, operational and effective.' This is feature description, not outcome framing. The best differentiators — '30 minutes to deploy, no agents', 'timeline-matching technology uncovers stealth devices other tools miss', 'bootstrapped to profitability with 100+ enterprise clients' — are all below the fold. The Sainsbury's quote ('having confidence in all the assets we have') surfaces on scroll but should be at the top.
Recommendation
Upgrade the sub-headline to lead with the most specific, defensible claims: 'Agentless deployment in under 30 minutes. Patent-pending timeline-matching technology that finds the 10% of devices your existing tools miss. Trusted by Sainsbury's, Ocado, and THG.' The Gartner Peer Insights badge already appears in the trust section — add a star rating and review count next to it. The headline is earning the scroll; the sub-headline needs to keep it.
Copy
Hero Headline — Tagline Is Sharp, Sub-headline Is Weak
Score
55
Severity
Medium
Finding
The trademarked hero headline 'Know Every Device. Eliminate Exposure.™' is punchy and specific — exactly right for a CAASM product. The sub-headline, however, is generic: 'ThreatAware connects to your existing tools to give you a single, accurate view of every device and validates security controls are installed, operational and effective.' This is feature description, not outcome framing. The best differentiators — '30 minutes to deploy, no agents', 'timeline-matching technology uncovers stealth devices other tools miss', 'bootstrapped to profitability with 100+ enterprise clients' — are all below the fold. The Sainsbury's quote ('having confidence in all the assets we have') surfaces on scroll but should be at the top.
Recommendation
Upgrade the sub-headline to lead with the most specific, defensible claims: 'Agentless deployment in under 30 minutes. Patent-pending timeline-matching technology that finds the 10% of devices your existing tools miss. Trusted by Sainsbury's, Ocado, and THG.' The Gartner Peer Insights badge already appears in the trust section — add a star rating and review count next to it. The headline is earning the scroll; the sub-headline needs to keep it.
Copy
Hero Headline — Tagline Is Sharp, Sub-headline Is Weak
Score
55
Severity
Medium
Finding
The trademarked hero headline 'Know Every Device. Eliminate Exposure.™' is punchy and specific — exactly right for a CAASM product. The sub-headline, however, is generic: 'ThreatAware connects to your existing tools to give you a single, accurate view of every device and validates security controls are installed, operational and effective.' This is feature description, not outcome framing. The best differentiators — '30 minutes to deploy, no agents', 'timeline-matching technology uncovers stealth devices other tools miss', 'bootstrapped to profitability with 100+ enterprise clients' — are all below the fold. The Sainsbury's quote ('having confidence in all the assets we have') surfaces on scroll but should be at the top.
Recommendation
Upgrade the sub-headline to lead with the most specific, defensible claims: 'Agentless deployment in under 30 minutes. Patent-pending timeline-matching technology that finds the 10% of devices your existing tools miss. Trusted by Sainsbury's, Ocado, and THG.' The Gartner Peer Insights badge already appears in the trust section — add a star rating and review count next to it. The headline is earning the scroll; the sub-headline needs to keep it.
Brand
Integration Icon Grid — No Alt Text or Vendor Names
Score
38
Severity
Medium
Finding
The integration showcase on the homepage displays approximately 30 vendor logos as icon images — all served as /images/logos/[uuid].png files with no alt text whatsoever. This means the names of ThreatAware's 150+ integration partners (CrowdStrike, SentinelOne, Microsoft Defender, etc.) are completely invisible to search engines and screen readers. For a CAASM platform whose value proposition depends entirely on the breadth of its integrations, having an unindexable logo grid is a significant SEO miss — 'ThreatAware CrowdStrike integration', 'ThreatAware Microsoft Defender', 'ThreatAware SentinelOne' are all high-intent enterprise evaluation searches.
Recommendation
Add descriptive alt text to every integration logo: alt='CrowdStrike integration', alt='Microsoft Defender for Endpoint integration', etc. This makes integration names indexable by Google, accessible to screen readers, and visible as text if images fail to load. The integrations page (/integrations) presumably has full details — surface at least the 10 most common integrations as named text on the homepage alongside the icon grid for SEO anchor value.
Brand
Integration Icon Grid — No Alt Text or Vendor Names
Score
38
Severity
Medium
Finding
The integration showcase on the homepage displays approximately 30 vendor logos as icon images — all served as /images/logos/[uuid].png files with no alt text whatsoever. This means the names of ThreatAware's 150+ integration partners (CrowdStrike, SentinelOne, Microsoft Defender, etc.) are completely invisible to search engines and screen readers. For a CAASM platform whose value proposition depends entirely on the breadth of its integrations, having an unindexable logo grid is a significant SEO miss — 'ThreatAware CrowdStrike integration', 'ThreatAware Microsoft Defender', 'ThreatAware SentinelOne' are all high-intent enterprise evaluation searches.
Recommendation
Add descriptive alt text to every integration logo: alt='CrowdStrike integration', alt='Microsoft Defender for Endpoint integration', etc. This makes integration names indexable by Google, accessible to screen readers, and visible as text if images fail to load. The integrations page (/integrations) presumably has full details — surface at least the 10 most common integrations as named text on the homepage alongside the icon grid for SEO anchor value.
Brand
Integration Icon Grid — No Alt Text or Vendor Names
Score
38
Severity
Medium
Finding
The integration showcase on the homepage displays approximately 30 vendor logos as icon images — all served as /images/logos/[uuid].png files with no alt text whatsoever. This means the names of ThreatAware's 150+ integration partners (CrowdStrike, SentinelOne, Microsoft Defender, etc.) are completely invisible to search engines and screen readers. For a CAASM platform whose value proposition depends entirely on the breadth of its integrations, having an unindexable logo grid is a significant SEO miss — 'ThreatAware CrowdStrike integration', 'ThreatAware Microsoft Defender', 'ThreatAware SentinelOne' are all high-intent enterprise evaluation searches.
Recommendation
Add descriptive alt text to every integration logo: alt='CrowdStrike integration', alt='Microsoft Defender for Endpoint integration', etc. This makes integration names indexable by Google, accessible to screen readers, and visible as text if images fail to load. The integrations page (/integrations) presumably has full details — surface at least the 10 most common integrations as named text on the homepage alongside the icon grid for SEO anchor value.
SEO
Competitor Displacement — No vs. Pages
Score
42
Severity
Medium
Finding
ThreatAware is positioned against Qualys CyberSecurity Asset Management, Axonius, Lansweeper, and other CAASM platforms (visible in Gartner competitor review data). One customer review explicitly states 'At the start of the COVID pandemic, Darktrace didn't provide oversight of our home-based workforce outside the office environment. Now that we've switched to ThreatAware, there's very little driving us back to Darktrace.' This is a named displacement story that belongs on a /vs/darktrace page. Yet the site has no /vs/ comparison pages at all — the Solutions nav item links to /solutions/comparison but this appears to be a competitor comparison landing page rather than individual vendor-specific pages.
Recommendation
Build dedicated /vs/axonius, /vs/qualys-caasm, /vs/darktrace, and /vs/lansweeper pages. The Darktrace displacement quote from a customer review is ready-made content for a /vs/darktrace page — it's already in the public domain on Capterra. These pages capture mid-funnel evaluation traffic from buyers who are already considering a purchase and want to compare specific alternatives. In cybersecurity, where procurement cycles are long, capturing this comparison-stage traffic is high-ROI.
SEO
Competitor Displacement — No vs. Pages
Score
42
Severity
Medium
Finding
ThreatAware is positioned against Qualys CyberSecurity Asset Management, Axonius, Lansweeper, and other CAASM platforms (visible in Gartner competitor review data). One customer review explicitly states 'At the start of the COVID pandemic, Darktrace didn't provide oversight of our home-based workforce outside the office environment. Now that we've switched to ThreatAware, there's very little driving us back to Darktrace.' This is a named displacement story that belongs on a /vs/darktrace page. Yet the site has no /vs/ comparison pages at all — the Solutions nav item links to /solutions/comparison but this appears to be a competitor comparison landing page rather than individual vendor-specific pages.
Recommendation
Build dedicated /vs/axonius, /vs/qualys-caasm, /vs/darktrace, and /vs/lansweeper pages. The Darktrace displacement quote from a customer review is ready-made content for a /vs/darktrace page — it's already in the public domain on Capterra. These pages capture mid-funnel evaluation traffic from buyers who are already considering a purchase and want to compare specific alternatives. In cybersecurity, where procurement cycles are long, capturing this comparison-stage traffic is high-ROI.
SEO
Competitor Displacement — No vs. Pages
Score
42
Severity
Medium
Finding
ThreatAware is positioned against Qualys CyberSecurity Asset Management, Axonius, Lansweeper, and other CAASM platforms (visible in Gartner competitor review data). One customer review explicitly states 'At the start of the COVID pandemic, Darktrace didn't provide oversight of our home-based workforce outside the office environment. Now that we've switched to ThreatAware, there's very little driving us back to Darktrace.' This is a named displacement story that belongs on a /vs/darktrace page. Yet the site has no /vs/ comparison pages at all — the Solutions nav item links to /solutions/comparison but this appears to be a competitor comparison landing page rather than individual vendor-specific pages.
Recommendation
Build dedicated /vs/axonius, /vs/qualys-caasm, /vs/darktrace, and /vs/lansweeper pages. The Darktrace displacement quote from a customer review is ready-made content for a /vs/darktrace page — it's already in the public domain on Capterra. These pages capture mid-funnel evaluation traffic from buyers who are already considering a purchase and want to compare specific alternatives. In cybersecurity, where procurement cycles are long, capturing this comparison-stage traffic is high-ROI.
UX
'Labs is coming' Banner — Prominent but Incomplete
Score
45
Severity
Medium
Finding
Immediately below the hero, a full-width banner reads 'Labs is coming. Be the first to build something extraordinary. Get early access →' linking to /labs. The Labs banner appears before any customer logo or product feature — it occupies prime real estate on a page being evaluated by enterprise CISO prospects who are not in 'early access' mode. For a CAASM evaluation, the first question is 'does the core product work?' not 'can I sign up for a beta product launch?' The banner also creates ambiguity: does 'Labs' refer to a research function, a developer environment, or a new product tier?
Recommendation
Reposition the Labs banner to below the first social proof section or move it to a sticky footer element. The hero real estate — between the main CTA and the customer logos — is too valuable for a beta waitlist from the perspective of a CISO evaluating the core platform. Clarify what Labs is in one sentence on the banner: 'Build custom security workflows on top of your cyber asset data — powered by AI.' The current 'be the first to build something extraordinary' is too vague for a security buyer audience that is risk-averse by profession.
UX
'Labs is coming' Banner — Prominent but Incomplete
Score
45
Severity
Medium
Finding
Immediately below the hero, a full-width banner reads 'Labs is coming. Be the first to build something extraordinary. Get early access →' linking to /labs. The Labs banner appears before any customer logo or product feature — it occupies prime real estate on a page being evaluated by enterprise CISO prospects who are not in 'early access' mode. For a CAASM evaluation, the first question is 'does the core product work?' not 'can I sign up for a beta product launch?' The banner also creates ambiguity: does 'Labs' refer to a research function, a developer environment, or a new product tier?
Recommendation
Reposition the Labs banner to below the first social proof section or move it to a sticky footer element. The hero real estate — between the main CTA and the customer logos — is too valuable for a beta waitlist from the perspective of a CISO evaluating the core platform. Clarify what Labs is in one sentence on the banner: 'Build custom security workflows on top of your cyber asset data — powered by AI.' The current 'be the first to build something extraordinary' is too vague for a security buyer audience that is risk-averse by profession.
UX
'Labs is coming' Banner — Prominent but Incomplete
Score
45
Severity
Medium
Finding
Immediately below the hero, a full-width banner reads 'Labs is coming. Be the first to build something extraordinary. Get early access →' linking to /labs. The Labs banner appears before any customer logo or product feature — it occupies prime real estate on a page being evaluated by enterprise CISO prospects who are not in 'early access' mode. For a CAASM evaluation, the first question is 'does the core product work?' not 'can I sign up for a beta product launch?' The banner also creates ambiguity: does 'Labs' refer to a research function, a developer environment, or a new product tier?
Recommendation
Reposition the Labs banner to below the first social proof section or move it to a sticky footer element. The hero real estate — between the main CTA and the customer logos — is too valuable for a beta waitlist from the perspective of a CISO evaluating the core platform. Clarify what Labs is in one sentence on the banner: 'Build custom security workflows on top of your cyber asset data — powered by AI.' The current 'be the first to build something extraordinary' is too vague for a security buyer audience that is risk-averse by profession.
Structure
Pricing — Completely Absent
Score
35
Severity
High
Finding
There is no pricing page, no pricing link in the nav or footer, and no pricing signal anywhere on the site. The nav contains Platform, Integrations, Solutions, Use Cases, Company, Resources, Contact Us, and Book a Demo — no Pricing. The Capterra listing confirms the pricing model is 'per device per month' but this is completely invisible from the website. For enterprise CISO and procurement teams evaluating ThreatAware against Axonius and Qualys CAASM, the inability to self-qualify budget fit before engaging with sales adds unnecessary friction, particularly for smaller enterprise prospects who want to run a proof-of-concept before committing time to a discovery call.
Recommendation
Add at minimum a /pricing page with a conceptual tier structure (e.g., SME / Mid-Market / Enterprise) and a per-device pricing model indication, even if exact pricing requires a conversation. 'Priced per device, per month — contact us for a quote based on your estate size' with a rough reference ('$X per device for estates under 5,000 devices') enables budget qualification. For the bootstrapped-to-profitable origin story ThreatAware has, transparent pricing also signals confidence in the product's value.
Structure
Pricing — Completely Absent
Score
35
Severity
High
Finding
There is no pricing page, no pricing link in the nav or footer, and no pricing signal anywhere on the site. The nav contains Platform, Integrations, Solutions, Use Cases, Company, Resources, Contact Us, and Book a Demo — no Pricing. The Capterra listing confirms the pricing model is 'per device per month' but this is completely invisible from the website. For enterprise CISO and procurement teams evaluating ThreatAware against Axonius and Qualys CAASM, the inability to self-qualify budget fit before engaging with sales adds unnecessary friction, particularly for smaller enterprise prospects who want to run a proof-of-concept before committing time to a discovery call.
Recommendation
Add at minimum a /pricing page with a conceptual tier structure (e.g., SME / Mid-Market / Enterprise) and a per-device pricing model indication, even if exact pricing requires a conversation. 'Priced per device, per month — contact us for a quote based on your estate size' with a rough reference ('$X per device for estates under 5,000 devices') enables budget qualification. For the bootstrapped-to-profitable origin story ThreatAware has, transparent pricing also signals confidence in the product's value.
Structure
Pricing — Completely Absent
Score
35
Severity
High
Finding
There is no pricing page, no pricing link in the nav or footer, and no pricing signal anywhere on the site. The nav contains Platform, Integrations, Solutions, Use Cases, Company, Resources, Contact Us, and Book a Demo — no Pricing. The Capterra listing confirms the pricing model is 'per device per month' but this is completely invisible from the website. For enterprise CISO and procurement teams evaluating ThreatAware against Axonius and Qualys CAASM, the inability to self-qualify budget fit before engaging with sales adds unnecessary friction, particularly for smaller enterprise prospects who want to run a proof-of-concept before committing time to a discovery call.
Recommendation
Add at minimum a /pricing page with a conceptual tier structure (e.g., SME / Mid-Market / Enterprise) and a per-device pricing model indication, even if exact pricing requires a conversation. 'Priced per device, per month — contact us for a quote based on your estate size' with a rough reference ('$X per device for estates under 5,000 devices') enables budget qualification. For the bootstrapped-to-profitable origin story ThreatAware has, transparent pricing also signals confidence in the product's value.
Performance
Static PNG Dashboard Screenshot as Hero — Missed Opportunity
Score
60
Severity
Low
Finding
The hero section uses a static PNG screenshot (dashboard.bf6bb867.png) as the primary product visualisation. This is standard practice, but it's a missed opportunity for a platform whose core value is real-time visibility — an animated GIF or lightweight video showing the dashboard actively discovering devices, flagging missing controls, and resolving gaps would demonstrate the product's live nature in a way a static screenshot cannot. The homepage does include an explainer video but it requires a manual play action and is positioned below the fold.
Recommendation
Replace or supplement the static hero dashboard PNG with a short (8-12 second), looping, silent video of the product in action — showing a device being discovered, a control gap being flagged, and a remediation action. Autoplay muted video in the hero is standard in the security tool category and converts significantly better than static screenshots. The explainer video already exists; a cropped hero loop of the most compelling 10 seconds would serve the above-fold impression without requiring the full play commitment.
Performance
Static PNG Dashboard Screenshot as Hero — Missed Opportunity
Score
60
Severity
Low
Finding
The hero section uses a static PNG screenshot (dashboard.bf6bb867.png) as the primary product visualisation. This is standard practice, but it's a missed opportunity for a platform whose core value is real-time visibility — an animated GIF or lightweight video showing the dashboard actively discovering devices, flagging missing controls, and resolving gaps would demonstrate the product's live nature in a way a static screenshot cannot. The homepage does include an explainer video but it requires a manual play action and is positioned below the fold.
Recommendation
Replace or supplement the static hero dashboard PNG with a short (8-12 second), looping, silent video of the product in action — showing a device being discovered, a control gap being flagged, and a remediation action. Autoplay muted video in the hero is standard in the security tool category and converts significantly better than static screenshots. The explainer video already exists; a cropped hero loop of the most compelling 10 seconds would serve the above-fold impression without requiring the full play commitment.
Performance
Static PNG Dashboard Screenshot as Hero — Missed Opportunity
Score
60
Severity
Low
Finding
The hero section uses a static PNG screenshot (dashboard.bf6bb867.png) as the primary product visualisation. This is standard practice, but it's a missed opportunity for a platform whose core value is real-time visibility — an animated GIF or lightweight video showing the dashboard actively discovering devices, flagging missing controls, and resolving gaps would demonstrate the product's live nature in a way a static screenshot cannot. The homepage does include an explainer video but it requires a manual play action and is positioned below the fold.
Recommendation
Replace or supplement the static hero dashboard PNG with a short (8-12 second), looping, silent video of the product in action — showing a device being discovered, a control gap being flagged, and a remediation action. Autoplay muted video in the hero is standard in the security tool category and converts significantly better than static screenshots. The explainer video already exists; a cropped hero loop of the most compelling 10 seconds would serve the above-fold impression without requiring the full play commitment.
Social Proof
Customer Quote Specificity — Good but Could Be Quantified
Score
62
Severity
Low
Finding
The three homepage case study quotes are excellent in quality: the Sainsbury's CISO ('having confidence in all the assets we have'), BGF ('single source of truth'), and THG CSO ('automate and centralise asset management') are senior, named, and attributed. However none of the quotes include a quantified outcome — percentage of previously unknown devices discovered, time saved on incident response, reduction in security control gaps. The press coverage and product documentation confirm that 10-15% of devices typically go undetected before ThreatAware — a statistic that could anchor at least one customer quote.
Recommendation
Work with the Sainsbury's, Ocado, or THG security teams to develop a quote that includes a specific number: 'ThreatAware identified 12% of our 50,000-device estate that our existing tools had missed — devices that had real security gaps.' Quantified case studies convert 2-3x better than qualitative ones in enterprise security procurement. The Gartner Peer Insights page already contains several quantified reviews — these could be licensed for homepage use or used as inspiration for formal case study development.
Social Proof
Customer Quote Specificity — Good but Could Be Quantified
Score
62
Severity
Low
Finding
The three homepage case study quotes are excellent in quality: the Sainsbury's CISO ('having confidence in all the assets we have'), BGF ('single source of truth'), and THG CSO ('automate and centralise asset management') are senior, named, and attributed. However none of the quotes include a quantified outcome — percentage of previously unknown devices discovered, time saved on incident response, reduction in security control gaps. The press coverage and product documentation confirm that 10-15% of devices typically go undetected before ThreatAware — a statistic that could anchor at least one customer quote.
Recommendation
Work with the Sainsbury's, Ocado, or THG security teams to develop a quote that includes a specific number: 'ThreatAware identified 12% of our 50,000-device estate that our existing tools had missed — devices that had real security gaps.' Quantified case studies convert 2-3x better than qualitative ones in enterprise security procurement. The Gartner Peer Insights page already contains several quantified reviews — these could be licensed for homepage use or used as inspiration for formal case study development.
Social Proof
Customer Quote Specificity — Good but Could Be Quantified
Score
62
Severity
Low
Finding
The three homepage case study quotes are excellent in quality: the Sainsbury's CISO ('having confidence in all the assets we have'), BGF ('single source of truth'), and THG CSO ('automate and centralise asset management') are senior, named, and attributed. However none of the quotes include a quantified outcome — percentage of previously unknown devices discovered, time saved on incident response, reduction in security control gaps. The press coverage and product documentation confirm that 10-15% of devices typically go undetected before ThreatAware — a statistic that could anchor at least one customer quote.
Recommendation
Work with the Sainsbury's, Ocado, or THG security teams to develop a quote that includes a specific number: 'ThreatAware identified 12% of our 50,000-device estate that our existing tools had missed — devices that had real security gaps.' Quantified case studies convert 2-3x better than qualitative ones in enterprise security procurement. The Gartner Peer Insights page already contains several quantified reviews — these could be licensed for homepage use or used as inspiration for formal case study development.
Freshness
Blog Section — Visible but Sparse on Homepage
Score
57
Severity
Low
Finding
The blog section at the bottom of the homepage shows three articles: the Series A announcement, a Bird & Bird case study, and 'The Visibility Problem'. The Series A post is timely and relevant, but the other two articles are undated in the homepage preview — a prospect cannot determine recency without clicking through. For a cybersecurity platform whose core pitch is real-time visibility, a blog section with undated previews subtly undercuts the freshness signal. The 'Check out the latest news about ThreatAware' framing implies currency, but without visible dates, that claim cannot be verified at a glance.
Recommendation
Add visible publish dates to all blog post previews on the homepage: 'March 2026', 'February 2026'. This is a minor CSS/template change with meaningful impact on perceived freshness and content authority. For a CISO evaluating ThreatAware, seeing actively published content from the past 30-60 days signals an engaged company, not one that publishes occasionally. Given the Series A momentum, a 2-post-per-month blog cadence with visible dates would compound SEO and trust signals simultaneously.
Freshness
Blog Section — Visible but Sparse on Homepage
Score
57
Severity
Low
Finding
The blog section at the bottom of the homepage shows three articles: the Series A announcement, a Bird & Bird case study, and 'The Visibility Problem'. The Series A post is timely and relevant, but the other two articles are undated in the homepage preview — a prospect cannot determine recency without clicking through. For a cybersecurity platform whose core pitch is real-time visibility, a blog section with undated previews subtly undercuts the freshness signal. The 'Check out the latest news about ThreatAware' framing implies currency, but without visible dates, that claim cannot be verified at a glance.
Recommendation
Add visible publish dates to all blog post previews on the homepage: 'March 2026', 'February 2026'. This is a minor CSS/template change with meaningful impact on perceived freshness and content authority. For a CISO evaluating ThreatAware, seeing actively published content from the past 30-60 days signals an engaged company, not one that publishes occasionally. Given the Series A momentum, a 2-post-per-month blog cadence with visible dates would compound SEO and trust signals simultaneously.
Freshness
Blog Section — Visible but Sparse on Homepage
Score
57
Severity
Low
Finding
The blog section at the bottom of the homepage shows three articles: the Series A announcement, a Bird & Bird case study, and 'The Visibility Problem'. The Series A post is timely and relevant, but the other two articles are undated in the homepage preview — a prospect cannot determine recency without clicking through. For a cybersecurity platform whose core pitch is real-time visibility, a blog section with undated previews subtly undercuts the freshness signal. The 'Check out the latest news about ThreatAware' framing implies currency, but without visible dates, that claim cannot be verified at a glance.
Recommendation
Add visible publish dates to all blog post previews on the homepage: 'March 2026', 'February 2026'. This is a minor CSS/template change with meaningful impact on perceived freshness and content authority. For a CISO evaluating ThreatAware, seeing actively published content from the past 30-60 days signals an engaged company, not one that publishes occasionally. Given the Series A momentum, a 2-post-per-month blog cadence with visible dates would compound SEO and trust signals simultaneously.
Enterprise Readiness
Compliance Certifications — Not Visible on Homepage
Score
52
Severity
Medium
Finding
ThreatAware serves Sainsbury's (50,000+ devices), financial services firms, energy companies, and law firms like Bird & Bird — all in sectors with stringent compliance requirements (PCI-DSS, FCA, GDPR, ISO 27001). Yet no compliance certifications, accreditations, or security page are surfaced on the homepage or in the nav. The Gartner Peer Insights badge appears twice (hero and footer), which is excellent, but compliance certifications are distinct from analyst ratings — they answer the procurement question 'is this vendor safe to process our data?'
Recommendation
Add ISO 27001, Cyber Essentials Plus, SOC 2, and any other relevant certifications as badges in the homepage trust section alongside the Gartner badge. Add a /security page covering data handling, deployment architecture, and compliance posture. For the financial services and retail segment ThreatAware targets — both of which face FCA and PCI-DSS requirements — vendor security certification is a procurement prerequisite. These certifications likely already exist given the enterprise customer base; surface them visibly.
Enterprise Readiness
Compliance Certifications — Not Visible on Homepage
Score
52
Severity
Medium
Finding
ThreatAware serves Sainsbury's (50,000+ devices), financial services firms, energy companies, and law firms like Bird & Bird — all in sectors with stringent compliance requirements (PCI-DSS, FCA, GDPR, ISO 27001). Yet no compliance certifications, accreditations, or security page are surfaced on the homepage or in the nav. The Gartner Peer Insights badge appears twice (hero and footer), which is excellent, but compliance certifications are distinct from analyst ratings — they answer the procurement question 'is this vendor safe to process our data?'
Recommendation
Add ISO 27001, Cyber Essentials Plus, SOC 2, and any other relevant certifications as badges in the homepage trust section alongside the Gartner badge. Add a /security page covering data handling, deployment architecture, and compliance posture. For the financial services and retail segment ThreatAware targets — both of which face FCA and PCI-DSS requirements — vendor security certification is a procurement prerequisite. These certifications likely already exist given the enterprise customer base; surface them visibly.
Enterprise Readiness
Compliance Certifications — Not Visible on Homepage
Score
52
Severity
Medium
Finding
ThreatAware serves Sainsbury's (50,000+ devices), financial services firms, energy companies, and law firms like Bird & Bird — all in sectors with stringent compliance requirements (PCI-DSS, FCA, GDPR, ISO 27001). Yet no compliance certifications, accreditations, or security page are surfaced on the homepage or in the nav. The Gartner Peer Insights badge appears twice (hero and footer), which is excellent, but compliance certifications are distinct from analyst ratings — they answer the procurement question 'is this vendor safe to process our data?'
Recommendation
Add ISO 27001, Cyber Essentials Plus, SOC 2, and any other relevant certifications as badges in the homepage trust section alongside the Gartner badge. Add a /security page covering data handling, deployment architecture, and compliance posture. For the financial services and retail segment ThreatAware targets — both of which face FCA and PCI-DSS requirements — vendor security certification is a procurement prerequisite. These certifications likely already exist given the enterprise customer base; surface them visibly.
Frequently asked
What kind of companies do you work with?
We work with ambitious tech companies — typically Series A and B — at the moment where the brand and website haven't kept pace with the business.
You've found product-market fit. Now you need to look the part, communicate clearly, and move fast enough to stay ahead.
That's the problem we're built for.
What does a typical project look like?
We've had bad experiences with agencies before. What's different?
Why Framer over other platforms?
How do we get started?
How does pricing work?
Recent work
V7 Labs
Enzai
Utila
Centific
Buena
trawa
Portex Global
Othello AI
Echo
Pools
Contentcloud
Wilson
Perspectives & Insights
Blazing fast brands &
Blazing fast brands &
Blazing fast brands &
websites for startups
websites for startups
websites for startups