# Program Details

The Epiphany Intelligence Platform is based on our belief that vulnerability does not equal exploitability. In our own internal efforts to secure our organization, as well as the capabilities we deliver, we are leading the way in the industry to change the risk equation that we have all used for decades.

<figure><img src="/files/bBPseVNDFjGiZhxM4lEk" alt=""><figcaption><p>Epiphany's NEW risk equation</p></figcaption></figure>

We believe that transforming how we contemplate, calculate, and ultimately focus our efforts to manage and mitigate risk should be changed from the historic norms that have been calcified in our industry over decades. While hygiene efforts and vulnerability management will never go away, they have distracted our ability to focus and act on the fulcrum point(s) of risk that cause material harm – those points of exploitability that lead from compromise to catastrophe. The broad-based vulnerability distraction has contributed to rising costs, rising risks, and has caused security to continue to fall behind the exponential growth of our IT environments. Our approach to security looks not only on the breadth of our environment—the traditional attack surface perspective—but brings a vigilant focus on exploitability to gain an attack depth perspective that hones our control environment to minimize risks to the greatest extent possible.

Our security program is led by our Chief Information Security Officer (CISO) Ambassador as well as our Chief Technology Officer (CTO). Between them they are responsible for the implementation and management of our security program with a focus on security architecture, product security, security engineering and operations, detection and response, as well as overall risk and compliance.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.reveald.com/technical-documentation/admin-guides/epiphany-security-and-trust/program-details.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.