> For the complete documentation index, see [llms.txt](https://intuitem.gitbook.io/ciso-assistant/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://intuitem.gitbook.io/ciso-assistant/product-docs/features/insights.md). # Insights {% hint style="info" %} **Enterprise (PRO) feature** — ships in the Enterprise edition and is not reachable on the community edition. No feature flag; visibility depends only on edition + the per-view permissions listed below. {% endhint %} The **Insights** menu groups three cross-cutting analytical views that don't belong to any single object — they aggregate across all your applied controls and assessments to surface estate-wide patterns. ## Where this sits in the analytical stack Insights is the **cross-cutting / estate-wide** layer of the platform's advanced analytics. Two more focused layers exist in community for the per-audit and per-framework views: | Surface | Scope | Edition | Gating | | ---------------------------------------------------------------------------------------- | ------------------------------------------------------------- | ---------------- | ------------------------- | | [**Audit advanced analytics**](/ciso-assistant/product-docs/features/audit-analytics.md) | One audit | Community | `advanced_analytics` flag | | [**Framework report**](/ciso-assistant/product-docs/features/framework-report.md) | One framework, every live audit using it | Community | None (permission-gated) | | **Insights** (this page) | Cross-cutting (impact graph, priority/effort, Gantt timeline) | Enterprise (PRO) | None (permission-gated) | ## Where to find it Sidebar → **Insights**. The group hosts three sub-pages. ## What's in the menu ### Impact analysis `/insights/impact-analysis` — a force-directed **graph explorer** linking applied controls to the audits, requirements, risk scenarios, and assets they touch. Useful for answering *"if we drop this control, what coverage do we lose?"* and for spotting controls that carry an outsized share of compliance load. Underlying endpoint: `/applied-controls/impact_graph/`. ### Priority review `/insights/priority-review` — an **impact-effort matrix** plotting applied controls on two axes: how much each one would reduce risk (impact) versus how much work it would take to put in place (effort). The classic quadrant chart — do the high-impact / low-effort ones first. Useful for triaging a remediation backlog. Underlying endpoint: `/applied-controls/impact_effort/`. ### Timeline view `/insights/timeline-view` — a **Gantt chart** plotting applied controls, compliance assessments, risk assessments, business impact analyses, findings assessments, and security exceptions on a single timeline, with swimlanes by domain. Controls: * Toggle each category on/off independently. * Filter by one or more domains. * Zoom between weekly / monthly / yearly. * Optional "use creation date as start" toggle for items without an explicit start date. It's the answer to *"what's actually on our calendar across all programmes?"* ## Permissions All three views require: `view_perimeter`, `view_riskscenario`, `view_referencecontrol`, `view_assessment`, `view_riskassessment`. Anyone with those permissions on the Enterprise edition sees the menu. ## Related * [Audit advanced analytics](/ciso-assistant/product-docs/features/audit-analytics.md) — single-audit deep dive (community feature, separate) * [Applied controls analytics](/ciso-assistant/product-docs/features/applied-controls-analytics.md) — applied-controls dashboard with filters * [Dashboards](/ciso-assistant/product-docs/features/dashboards.md) * [Mapping explorer](/ciso-assistant/product-docs/features/mapping-explorer.md) — different graph view (framework-to-framework) * [Feature flags](/ciso-assistant/product-docs/configuration/settings/feature-flags.md) --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://intuitem.gitbook.io/ciso-assistant/product-docs/features/insights.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.