In the information age, cyber security – the protection of systems, networks and data in cyberspace – is a critical issue for all businesses. Cyber attacks are increasingly cheap and easy to perpetrate. Indiscriminate automated attacks hunt for and exploit known weaknesses – not specific websites – so every Internet-facing organisation is at risk.
From PCI DSS compliance to CESG Certified Cyber Security, SOC audits to Cyber Essentials, ISO 27001 to cyber health checks, we can provide all of the resources you need to ensure your organisation can improve its cyber defences.
Scroll down to find out more about our wide range of books, consultancy services, documentation toolkits, penetration testing packages, risk assessment software and accredited training courses.
For more general information about cyber security, visit our dedicated cyber security information pages >>
For more in-depth information about cyber security, download our free green paper, Cyber Security: A critical business issue.
Click here for all available green papers >>
IT Governance’s webinars cover such topics as cyber security, the GDPR, ISO 27001 and IT service management, and all of our webinar resources can be downloaded for free.
Click here to watch the recordings of our latest webinars >>
Products and services
Here are a few ways in which we can help your cyber security project.
IT Governance’s publishing arm, ITGP, sources and publishes a wide range of IT GRC books, from pocket guides to implementation manuals.
Click here for cyber security titles >>
IT Governance’s cyber security consultants have a deep understanding of the cyber risks facing organisations today, and can help you implement the best possible security solutions for your budget and requirements. Services include:
CESG Certified Cyber Security Consultancy
IT Governance has developed a new cyber security consultancy service aligned with the requirements of CESG’s new Certified Cyber Security Consultancy (CCSC) scheme.
There are currently four CCSC categories, and IT Governance offers consultancy services in each:
Click here for more information about the CESG CCSC >>
Cyber Health Check
Our two–day Cyber Health Check combines on–site consultancy and audit with remote vulnerability assessments to assess your cyber risk exposure. Our four–step approach will identify your actual cyber risks, audit the effectiveness of your responses to those risks, analyse your real risk exposure and then create a prioritised action plan for managing those risks in line with your business objectives.
Click here for more information about our Cyber Health Check service >>
ISO 27001 consultancy
We’ve helped more than 400 organisations achieve accredited certification to the international standard for information security management, ISO 27001. From fixed–price packages to bespoke consultancy, we can supply everything you need to implement an ISO 27001–compliant ISMS (information security management system) – whatever your size, sector or location.
Click here to find out more about our wide range of ISO 27001 implementation solutions >>
SOC audits based on ISAE 3402 and SSAE 16
IT Governance can provide assistance throughout the entire SOC preparation, remediation, testing and reporting process.
Click here for more information about SOC audits based on ISAE 3402 and SSAE 16 >>
Cyber Essentials is a government–backed cyber security certification scheme that sets out a good baseline of cyber security suitable for all organisations in all sectors. The scheme addresses five key controls that, when implemented correctly, can prevent around 80% of cyber attacks.
Click here for more information about the Cyber Essentials scheme >>
Documentation for an information security management system that complies with the information security standard ISO 27001 can run to hundreds of pages. Fortunately, IT Governance’s ISO 27001 documentation toolkits contain fully customisable templates that have been written by our consultants:
The PCI DSS
If you need to improve your cyber security to comply with the PCI DSS, IT Governance can help. We’re an authorised PCI Qualified Security Assessor (QSA) and supply a wide range of PCI compliance and assessment products and services.
Click here for more information about complying with the PCI DSS >>
Regular penetration testing is the most effective way of identifying exploitable vulnerabilities in your company’s internet–facing resources, and is essential to any cyber security programme. IT Governance is a CREST member company and has all the relevant technical competence to perform CHECK services.
Click here for more information about penetration testing >>
Risk assesssment software
vsRisk™ is the industry-leading ISO 27001–compliant risk assessment software tool.
Click here for more information about vsRisk >>
IT Governance’s cyber security training programme is built on the foundations of our extensive practical experience implementing best–practice cyber security.
Click here for more information about cyber security training courses >>
To discuss your ISO 27001 requirements, please call us on 00 800 48 484 484 or email firstname.lastname@example.org.