In the information age, cyber security – the protection of systems, networks and data in cyberspace – is a critical issue for all businesses. Cyber attacks are increasingly cheap and easy to perpetrate. Indiscriminate automated attacks hunt for and exploit known weaknesses – not specific websites – so every Internet-facing organisation is at risk.
From PCI DSS compliance to CESG Certified Cyber Security, SOC audits to Cyber Essentials, ISO 27001 to cyber health checks, we can provide all of the resources you need to ensure your organisation can improve its cyber defences.
Scroll down to find out more about our wide range of books, consultancy services, documentation toolkits, penetration testing packages, risk assessment software and accredited training courses.
Products and services
Here are a few ways in which we can help your cyber security project.
IT Governance’s cyber security consultants have a deep understanding of the cyber risks facing organisations today, and can help you implement the best possible security solutions for your budget and requirements. Services include:
CESG Certified Cyber Security Consultancy
IT Governance has developed a new cyber security consultancy service aligned with the requirements of CESG’s new Certified Cyber Security Consultancy (CCSC) scheme.
There are currently four CCSC categories, and IT Governance offers consultancy services in each:
Click here for more information about the CESG CCSC >>
Cyber Health Check
Our two–day Cyber Health Check combines on–site consultancy and audit with remote vulnerability assessments to assess your cyber risk exposure. Our four–step approach will identify your actual cyber risks, audit the effectiveness of your responses to those risks, analyse your real risk exposure and then create a prioritised action plan for managing those risks in line with your business objectives.
ISO 27001 consultancy
We’ve helped more than 400 organisations achieve accredited certification to the international standard for information security management, ISO 27001. From fixed–price packages to bespoke consultancy, we can supply everything you need to implement an ISO 27001–compliant ISMS (information security management system) – whatever your size, sector or location.
Click here to find out more about our wide range of ISO 27001 implementation solutions >>
SOC audits based on ISAE 3402 and SSAE 16
IT Governance can provide assistance throughout the entire SOC preparation, remediation, testing and reporting process.
Click here for more information about SOC audits based on ISAE 3402 and SSAE 16 >>
Cyber Essentials is a government–backed cyber security certification scheme that sets out a good baseline of cyber security suitable for all organisations in all sectors. The scheme addresses five key controls that, when implemented correctly, can prevent around 80% of cyber attacks.
Click here for more information about the Cyber Essentials scheme >>
Documentation for an information security management system that complies with the information security standard ISO 27001 can run to hundreds of pages. Fortunately, IT Governance’s ISO 27001 documentation toolkits contain fully customisable templates that have been written by our consultants:
Regular penetration testing is the most effective way of identifying exploitable vulnerabilities in your company’s internet–facing resources, and is essential to any cyber security programme. IT Governance is a CREST member company and has all the relevant technical competence to perform CHECK services.
To discuss your ISO 27001 requirements, please call us on 00 800 48 484 484 or email email@example.com.