01/UNDERSTAND THE BUSINESS RISK

The first step in improving the security of your company is to gain a thorough understanding of the business risk in the context of electronic security. Business risk is a function of threats, impacts and vulnerabilities. Only with a good knowledge of the business risk can an organisation make informed decisions on what should be the appropriate levels of security protection.

CYBER SECURITY HEALTHCHECK

Our consultants work with you, to discover how effective your security program is, in the context of your overall business strategy. Our approach is an enterprise risk assessment that delivers meaningful and actionable output tailored to your business.

WHAT THIS IS

Our Cyber Security Health Check Service is jargon-free and business-focused.  Our goal is the find your strengths and weaknesses, with the output being a board-level report to enable focused decision making.  We will assess over two days your ability to: protect your critical information from unauthorised disclosure; withstand the common forms of attack; and your response capacity.

The output is actionable and meaningful information. We estimate the costs of fixing the problems we find, advise you on priorities and align our findings with your business plan.

  • This assessment has been created fully in-line with the NCSC 10 Steps to Cyber Security, and aligned to the international standard for security, ISO/IEC27001.

OUR FIVE STEP APPROACH

Our consultant works remotely to plan the healthcheck and identify key members of staff.  We agree the scope of work and the approach.  We ask you to share with us some key documentation and a network diagram.   The output from this phase is a scope and plan that we share with you.

Our trained and qualified consultant will visit your site and meet with key personnel.  We will identify the most sensitive information  assets that require protection.  We will identify the threat actors that are most likely to target your organisation in a short workshop and work out your risk appetite: whether you are risk adverse or risk seeking.  From here well establish the potential business harm that could be caused if your most sensitive information was disclosed, modified or made unavailable.   At the end of the day one, we will discuss the legal, contractural and regulatory frameworks that apply to your business.

On the second on-site day, our consultant will work with your in-house teams, and any partners, to assess your security controls across the ten key area of risk, according to the recommendations of the UK National Cyber Security Centre (NCSC)

Our consultant will review the data gathered and compile this into a our health check report.  We may contact you if we have any gaps in the data but this is all conducted off-site.

We will meet at your site or a nearby business centre to discuss our findings.  This half day event combines a presentation to executives, a presentation to key stakeholders and a fully costed and prioritised remediation plan.  There is no obligation to continue the work with Cyberwolf Consulting and the output is designed to allow you to continue with remediating in house, with another consultancy practice or with our practice.

THREE KEY BENEFITS

01/Strategic Insights

Know where your strengths and weaknesses are, the threats that target you and the options you have to detect and prevent those threats.

02/Digital Risks

Understand your key digital risks, report your risks to your shareholders and have a both a high level enterprise and a detailed view of digital risk.

03/Focused Investment

Discover what you need to invest, how much you need to plan for and where best to spend this in order to reduce the most risk.

WHAT YOU GET

01/CYBER HEALTH RISK REPORT

We will deliver a detailed risk report that includes an analysis of the business harm a cyber attack might cause, the likelihood that it will occur given the current controls.

02/CYBER HEALTH EXECUTIVE REPORT

We deliver a report and presentation that summarises our key findings. We will give your business a risk rating, provide an assessment of the critical threats faced and a prioritised, costed remediation plan that aligns with your company's business objectives.

03/CYBER HEALTH STRATEGY MEETING

We will arrange for a 90 minute presentation of our findings to you and discuss the best options for remediation. This is your opportunity to question our findings and to discuss solutions.

04/CYBER HEALTH PROJECT PLAN

We will deliver a project plan spanning around 12 months to take your cyber security next level. We take a high level view based on our experience to deliver to you a clear set of steps to remediate the issues we find.

REGISTER HERE TO GET ALL OF THIS FREE!

Fill out the form below to enquire about this service and to request that we offer this for free

*Terms and conditions apply to this offer.  The offer is limited to qualifying companies only. The offer is free from any obligation to take up any of our services and is free at the point of use. Please contact us for more information and full terms and conditions.