NIST/CIS20

Our Security Risk and Capability Maturity Assessment is based on Cyber Security frameworks that align to both national (GCHQ/NCSC – Cyber Essentials) and international standards (NIST 800/CIS20/ISO27001) as well as regulations and government guidelines.

Our process involves reviewing your systems and processes and consulting with key stakeholders within your business.

In doing so, we:

  • Review your policies and technologies
  • Determine your Security Maturity Level (SML)
  • Identify gaps
  • Develop IT Security Roadmap & Budget
  • Develop an understanding of your organisation and its security requirements
  • Identify policy and technology gaps based on the top 20 security controls
  • Develop a roadmap to your sector’s required security capability level
  • Executive summary – On-site presentation meeting with your leadership team to review the findings, recommendations and roadmap, and to respond to questions.
  • Security Maturity Level Report – Based on the findings, your organisation is given a score aligned to recognised standards and best practice between 0-5.
  • IT Security Roadmap & Budget – A roadmap is presented which achieves a phased remediation pathway and budget to achieve the target security maturity level.

Housing case study

Size of company:
25

Sector:
Housing

Threat protection cover:
Cyber Essentials, Cyber Essentials Plus, Ongoing Cyber Support

Overview:

Our client holds lots of confidential data relating to tenants in their properties and financial and medical care plans in relation to the care and support of those tenants in their properties and managed/assisted living spaces.

View full case study >>

Managed Business Services case study

Size of company:
25

Sector:
IT

Threat protection cover:
Cyber Essentials, Cyber Essentials Plus, Ongoing Cyber Support

Overview:

Our client, a smaller company within a larger organisation, providing internal and external ICT support for the wider company and their end clients.

View full case study >>

Data Management case study

Size of company:
50-100

Sector:
Government

Threat protection cover:
Cyber Essentials, Cyber Essentials Plus, Ongoing Cyber Support

Overview:

Our client works with several very well-known UK brands and local / central government departments all of which, through questionnaires and external audits, were asking our client for further information about their security provision as there was a need to ensure that the data being managed by our client was secure.

View full case study >>

Legal case study

Size of company:
25

Sector:
Legal

Threat protection cover:
Cyber Essentials, Cyber Essentials Plus, Ongoing Cyber Support

Overview:

Our client, a legal firm, wanted to improve their Cyber Security Posture through the National Cyber Security Centre’s (NCSC) Cyber Essentials and Cyber Essentials Plus certification path.

View full case study >>

Our Credentials

We are the only Cyber Security Company who can certify your compliance (we are an approved certifying body) and manage your security and risk on an ongoing basis, as well as help you achieve Cyber Essentials, Cyber Essentials Plus and IASME Gold Framework.

Get in touch