The subject matter described herein includes methods, systems, and computer program products for a software as a service (SaaS) system for continuous cyber risk management and monitoring. The method includes storing, maintaining, and updating one or more rules that associates a cyber risk, threat, or vulnerability with an action for one or more assets. The one or more assets includes at least one of: information systems, critical infrastructure, tangible objects, persons, data, and metadata. When an event is detected, it is determined whether a rule applies to the event by searching and matching information associated with the event with the one or more rules. If a rule applies, an action may be performed and various users notified. The action performed includes a corrective, remedial, or mitigating action as specified by the applicable rule. The method for continuous cyber risk management and monitoring described herein are performed automatically and continuously.