Citicus MOCA is a mobile application for iOS (iPhone, iPad, iPod touch) that enables users to perform criticality assessments of organizational assets. The tool applies a structured methodology to evaluate the maximum credible loss an organization could face if a given asset were compromised, lost, or damaged. Assets that can be assessed include: - Information systems - Data centres and IT infrastructure - IT service providers and third-party suppliers - Offices, factories, warehouses, and retail outlets - Equipment and production processes Assessments are completed through guided screens that prompt users to consider loss scenarios from multiple perspectives. A built-in "harm selector" allows users to evaluate the business impact of each scenario. Results include a maximum credible loss chart, critical timescale, and an indication of the need for protection. Completed assessments can be uploaded to Citicus Barista (a cloud-based processing service) or to Citicus ONE (a risk and compliance platform), generating PDF reports for stakeholder sharing and record-keeping. Assessments can also be sent to any third-party system that supports the prescribed web service interface. The app is available free of charge from the Apple App Store. Enterprise-wide deployment is supported through Citicus and its implementation partners, with options for integration into security, risk, business continuity, audit, and inspection processes.