Compliance Summary Report
Last updated: July 1, 2026
The Compliance Summary Report gives you a holistic view of how well you're responding to compliance events across your client base, or for a single client. It's one of the most useful tools in Cork Vantage for assessing compliance health and demonstrating value in client conversations.
What this report does
Run the Compliance Summary for your full client base, clients with financial protection, or scoped to a single client. Wider time frames return more events and, ideally, more resolved events.
A few things to know before you run it:
Individual client reports include the Cork Score alongside compliance data. All-client reports do not, since scores are client-specific.
Reports can be scheduled for recurring delivery from the same interface used to generate them.
Reading the Report
The report is organized into three sections. Here's what each one shows and how to use it.
Section 1: Summary of events
What it shows: The total number of compliance events created during the selected time frame, and how many have been resolved.
A high resolution rate signals strong compliance hygiene and active event management.
A low resolution rate means events are being created but not acted on.
This section is well suited for client-facing conversations. It gives a plain, quantifiable answer to "how are we doing?"
Section 2: Event response times
What it shows: How quickly compliance events were responded to, broken down by asset type: endpoint, inbox, and domain.
Response speed is reported in bands: under 24 hours, under 3 days, under 1 week, and beyond.
Each asset type is reported separately so you can spot where response is strongest or slowest.
If your clients are enrolled in Cork financial protection, responding to events before the risk deadline is a condition of coverage. Delayed responses can affect claim eligibility.
Section 3: Compliance event breakdown
What it shows: The total event count from Section 1 broken out by asset type (endpoint, inbox, domain) and then by individual event type within each category.
Use this section to identify which event types are generating the most volume. Those are your highest-priority remediation targets.
High EDR event counts often indicate check-in or deployment gaps, which are common across most environments.
Low or zero counts for categories like insecure mail forward rules are a positive signal worth calling out to clients.
Relatively high inbox or domain event counts compared to endpoint counts may point to gaps in onboarding or offboarding workflows.
Cork Cyber Score on individual client reports
When you run the Compliance Summary for a single client, the Cork Cyber Score appears at the top of the report alongside the events resolved number.
The Cork Cyber Score is made up of four categories: compliance events, vulnerability history, claims history, and controls coverage. A strong compliance picture does not guarantee a high Cork Cyber Score, since the other three categories contribute independently.
If the score and the compliance data seem to tell different stories, use the Cork Cyber Score Simulator to investigate.