Reports Overview
BreachSpider generates formatted intelligence reports for two audiences: operational teams who need detailed technical findings, and management, compliance officers, and regulators who need posture summaries and evidence packages.
Reports are available on Professional tier and above. Standard tier users can view dashboard summaries but cannot generate exportable reports.
Report Types
Executive Summary
A high-level posture report for plant managers, utility executives, board members, and regulators. Contains overall risk scores, finding counts by severity, KEV exposure, top critical findings in plain English, trend data, and recommended actions. SAGE generates the narrative in non-technical language.
Environment Risk Report
A detailed technical report for a specific environment. Contains all findings with scoring data, affected assets, patch status, and SAGE analysis. Designed for OT engineers and security teams who need the full picture for a single site.
NERC CIP Evidence Package
A compliance evidence package formatted for CIP-007 and CIP-010 audit submissions. Contains the asset inventory, CVE assessment log, patch applicability determinations, acknowledged findings with documented reasons, compensating controls, and an audit log excerpt. Includes a signature block for your authorized representative.
See NERC CIP Evidence Package.
IEC 62443 Report
A report mapped to IEC 62443 security levels and requirements. Contains findings categorized by IEC 62443 control families, security level assessments per zone, and recommended actions aligned with the standard.
See IEC 62443 Report.
Compliance Audit Export
A filtered export of the audit log for a specified date range. Available as CSV (Professional) or PDF (Enterprise). See the Compliance section for details.
Generating a Report
- Navigate to Reports in the left sidebar.
- Click Generate Report.
- Select the report type.
- Select the environment(s) to include. Some report types (Executive Summary) support multi-environment selection. Others (Environment Risk) are single-environment.
- Select the date range for the reporting period.
- Click Generate.
Report generation is asynchronous. Complex reports with SAGE narration may take 30-60 seconds. You receive a notification (bell icon, top right) when the report is ready.
Report Formats
HTML: View in the browser with full formatting, active links, and interactive elements. HTML reports can be viewed directly in BreachSpider.
PDF: Download as a static PDF file with CITED Relevance LLC branded letterhead. PDF reports are suitable for sharing with external parties, submitting to auditors, or archiving.
SAGE Narration
Professional tier and above: each report section includes SAGE-generated narrative that summarizes the findings in plain English.
The narration is tailored to the report audience:
- Executive Summary: Written for non-technical readers. No jargon. Clear risk statements and action recommendations.
- Environment Risk Report: Written for technical teams. Includes ICS-specific context, protocol references, and detailed remediation guidance.
- NERC CIP Evidence Package: Written in compliance language. References specific CIP requirements and maps findings to control objectives.
Report History
All generated reports are stored in the Reports section. Navigate to Reports to see your report history:
- Report type
- Environment(s) included
- Date range
- Generated by (actor)
- Generated at (timestamp)
- Status: Ready, Generating, or Failed
Click any report to view (HTML) or download (PDF).
Generating via API
curl -X POST \
-H "Authorization: Bearer bs_live_..." \
-H "Content-Type: application/json" \
-d '{
"report_type": "executive_summary",
"environment_ids": [5, 8],
"date_from": "2026-05-01",
"date_to": "2026-05-31"
}' \
"https://breachspider.com/api/v1/reports/generate"
The response returns a report ID. Poll the report status or wait for the notification. Once ready, download the report:
curl -H "Authorization: Bearer bs_live_..." \
"https://breachspider.com/api/v1/reports/42/view"