Skip to Main Content
Strengthen your email security practices with 50% off e-learning | Shop now
Cyber Health Check

Cyber Health Check

SKU: 4407
Format: Cyber Health Check
Published: 30 Jan 2016
Availability: Always available

Easily identify your cyber risks with our G-Cloud 9 approved on-site cyber health check. (Service ID: 6954 2611 8858 292.)

Assess your cyber risk exposure and identify a practical route to minimise your risks with our four-phase cyber health check, combining:

  • On-site governance and information security management audit.
  • Technical cyber security control assessments.
  • Vulnerability scans.
  • Online staff survey.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account.  Apply online today or call our service centre team on 00 800 48 484 484.

 COVID-19: remote delivery options

We would like to reassure our clients that all training and consultancy services will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we are adjusting our delivery methods to allow us to provide consultancy services, penetration tests and training remotely where necessary. Please also refer to our COVID-19 policy.

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Identify your cyber risks

If you are embarking on a cyber security improvement programme, a cyber health check will help you identify your weakest security areas and recommend appropriate measures to mitigate your risks. 

This health check will provide you with a concise and detailed report describing your current cyber risk status and critical exposures, and will draw on best practice, such as ISO 27001, 10 Steps to Cyber Security, CIS 20 Critical Controls, NCSC guidance and IT Governance’s practical experience to provide recommendations for reducing your cyber and compliance risks.

Scope of work

Our qualified, experienced consultants will work with you to determine how well cyber security is governed at board level. They will examine and report on the areas listed below, identifying any gaps and recommending specific steps to mitigate them.

Governance and information security management audit

  • Cyber risk governance
  • Critical cyber assets
  • Asset register
  • Risk register
  • Legal, regulatory and contractual requirements
  • Policies and the information security management system (ISMS)
  • Roles and responsibilities
  • Business continuity and incident management
  • Staff training and awareness
  • Physical security review

Technical cyber security controls

  • Network and perimeter security
  • Secure configuration
  • Access control and privilege access
  • Anti-malware
  • Security monitoring

Vulnerability scans

  • External scan of up to 15 IP addresses
  • One website / URL

Staff questionnaire

We will send an online questionnaire to a broad range of your staff to determine cyber security awareness levels, covering:

  • Policies and procedures
  • Social media use
  • Phishing awareness
  • Password management
  • Malware
  • Portable device use
  • Handling personal information
  • Incident response

Benefit from proven cyber security experience and expertise

Our services are delivered by a team of experienced and highly qualified consultants who have a deep understanding of the range of cyber risks facing organisations today. Your assigned consultant will help you identify and understand how to transform your cyber security stance, allowing you to implement the best possible solutions for your budget and business requirements.



The above quoted price is valid for SMEs subject to the following restrictions:

  • Small and medium-sized businesses (SMBs/SMEs) with up to 500 employees.
  • One physical location for the on-site visit and audit.
  • Vulnerability scans are based on a fixed scope of IP addresses/one website as defined above.
  • If your business is located outside mainland UK (England, Scotland and Wales), additional expenses will be charged to accommodate our consultant’s travel for the on-site assessment.

For larger organisations, please contact us for a custom quote.

Purchase this service to receive expert advice from a cyber security specialist to get you started with your risk mitigation plan immediately.


The output of the health check is a concise report including a prioritised action plan, describing your current cyber risk status and critical exposure in the areas of people, processes and technology. The report will also recommend how to mitigate the risks involved.

Why choose IT Governance?

Why choose IT Governance?

IT Governance has more than 15 years’ experience helping organisations get their cyber security right, working with boards and senior managers to identify and manage cyber risks in line with the organisation’s risk appetite and commercial business drivers.

  • Our specialist team has extensive data protection and information security management project expertise, both in the UK and overseas.
  • Our transparent proposals are fixed price, so you won’t get any unexpected surprises.
  • You will have access to a dedicated relationship manager throughout the project.

IT Governance is also recognised under the following frameworks:

  • CREST certified as ethical security testers.
  • Certified under Cyber Essentials Plus, the UK government-backed cyber security certification scheme.
  • Certified to ISO 27001:2013, the world’s most recognised cyber security standard.

Customer Reviews