We offer customizable training for all levels of client personnel to facilitate online security and highlight common risks such as phishing, social engineering, and internal controls. A key component of this is training board, executive and senior management on how to assess and protect their business.
SECURITY POSTURE REVIEW
This includes a high-level, business focused analysis and review of existing security policies, procedures, and controls in addition to providing senior management with an analysis of corporate posture against their obligations of due care and governance. This also features recommendations for areas of concern, per ISO/IEC 27001.
THREAT RISK ASSESSMENT
We will conduct detailed assessments of assets, risks, and threats faced by the business, including assessing potential losses, analysis of likelihood and impact of specific events, formation of countermeasures and controls, and finally, review handling of personally identifiable information to ensure compliance with GDPR and other privacy obligations.
POLICIES & PROCEDURES
This encompasses analyzing and reviewing security policies and procedures in accordance with ISO/IEC 27002 (or other comparable) controls. We will ensure that the policies and procedures are appropriate to the associated risks, as well as design-develop-implement support. This service ranges from a single high level assessment to a full audit.