New additions to the CSEC Safe Zone: Compass EU and CyberScore360

CSEC continues to expand its Safe Zone as a curated repository of trusted and practical tools supporting cybersecurity and regulatory compliance.

We are pleased to highlight three tools now included in our collection.

Compass EU – regulatory self-assessment grounded in EU law

Compass EU, developed by Emir Ramić, is a compliance assessment platform aligned with key EU regulations, including:

• DORA (EU 2022/2554)

• GDPR (EU 2016/679)

• NIS2 (EU 2022/2555)

• CRA (EU 2024/2847)

• ISO/IEC 27001:2022

• EU AI Act (EU 2024/1689)

• EU Data Act (EU 2023/2854)

What distinguishes this tool is its direct mapping of each question to specific legal provisions, avoiding generic frameworks or interpretations. It focuses on practical outcomes – identifying critical controls, assessing risk exposure, and providing actionable remediation insights.

👉 Try it: Compass EU – Compliance Assessment Platform

KOMPAS – regulatory self-assessment for banks in Bosnia and Herzegovina

KOMPAS, also developed by Emir Ramić, is a compliance assessment platform built specifically for the local regulatory reality in Bosnia and Herzegovina. It covers:

• FBA ICT Decision – Odluka o upravljanju IKT sistemom i IKT rizicima u banci (banks in FBiH)

• ABRS ICT Decision – Odluka o upravljanju informacionim sistemom i rizicima IKT u banci (banks in RS)

• DORA (EU 2022/2554)

• BiH Personal Data Protection Law (Sl. glasnik BiH 12/25)

Like Compass EU, each question is mapped directly to specific articles of the relevant regulation, with gap analysis and actionable remediation guidance tailored to the BiH banking sector.

👉 Try it: KOMPAS – Compliance Assessment Platform

CyberScore360 – structured cybersecurity assessment

What is CyberScore360?  It is a link and site safety assistant that turns complex security checks into plain language. Give it any URL or IP and it reviews reputation signals, malware indicators, certificate health, DNS hygiene, and open services, then distils the results into a clear verdict with a short explanation.

👉 Learn more: CyberScore 360 v2.2

Why this matters

As regulations such as NIS2 and DORA introduce stricter requirements, and as local regulators in the Western Balkans align with EU standards, organisations need tools that:

• enable rapid understanding of their current posture

• translate regulatory obligations into operational controls

• support risk-based decision-making

As part of the CSEC Safe Zone, these tools contribute to our mission of providing practical, accessible, and trusted resources for organisations across the region.