IT Governance’s cyber security consultancy services are delivered by a team of experienced in-house consultants who have a deep understanding of the range of cyber risks facing organisations today, helping you implement the best possible security solutions for your budget and requirements.
Our services can be tailored for organisations of all sizes in any industry and location.
COVID-19: remote delivery options
We would like to reassure our clients that all training and consultancy services will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we are adjusting our delivery methods to allow us to provide consultancy services, penetration tests and training remotely where necessary. Please also refer to our COVID-19 policy.
Speak to a cyber security expert
For more information about our cyber security consultancy packages, services, or to simply ask a question, please contact one of our experts today.
ISO 27001 consultancy
ISO 27001 is the international standard that describes best practice for an ISMS (information security management system). It is globally recognised as the most comprehensive solution to achieving an enhanced cyber security posture.
We’ve helped more than 400 organisations achieve accredited certification to the Standard, and we can provide implementation support to suit every budget or timescale, wherever you are in the world. From fixed-price packages to bespoke consultancy, we can supply everything you need to implement an ISO 27001-compliant ISMS in your organisation.
Find out more about our ISO 27001 consultancy services
Cyber health check
The three-phase cyber health check combines on-site consultancy and audit with remote vulnerability assessments to assess your cyber risk exposure. Our four-step approach will identify your actual cyber risks, audit the effectiveness of your responses to those risks, analyse your real risk exposure and then create a prioritised action plan for managing those risks in line with your business objectives.
Find out more about our cyber health check service
Cyber Security Audit and Review
Our Cyber Security Audit and Review service provides an in-depth and detailed evaluation of your organisation’s cyber security posture in relation to its compliance with UK government security objectives, policies, standards and processes.
Find out more about our Cyber Security Audit and Review service
Cyber Security Risk Assessment
Conducting a risk assessment can be a complicated undertaking, especially for organisations that don’t know what standard to measure their efforts against. Our team of qualified cyber security advisers will provide business-driven consultation on the overall process of assessing information risk.
Find out more about our Cyber Security Risk Assessment service
Cyber Security Risk Management
We will help you develop an information security risk management strategy, enabling you to take a systematic approach to risk management.
Our risk assessment service includes consultancy guidance and advice on developing suitable methods for managing risks in line with the international risk management standard, ISO 27005.
Find out more about our Cyber Security Risk Management service
Cyber Security Architecture
Our team of cyber security experts can help you develop, design and implement secure architectures across IT systems, networks and applications.
Find out more about our Cyber Security Architecture service
The UK government’s G-Cloud framework makes it faster and cheaper for the public sector to buy Cloud services. Suppliers are approved by the Crown Commercial Service (CCS) via the G-Cloud application process, eliminating the need for a full tender process for each buyer.
IT Governance has been approved to provide six cyber security services via the government’s Digital Marketplace for Cloud support.
Find out more about our G-Cloud consultancy services
SOC 2 audits
A SOC (Service Organization Controls) 2 audit report provides detailed information and assurance about a service organisation’s security, availability, processing integrity, confidentiality and/or privacy controls, based on their compliance with the AICPA’s (American Institute of Certified Public Accountants) TSC (Trust Services Criteria).
IT Governance can provide assistance throughout the entire SOC 2 preparation, remediation, testing and reporting process.
Find out more about SOC 2 audits
Cyber incident response management
The speed at which you identify a breach, combat the spread of malware, prevent unauthorised access to data, and remediate the threat will make a significant difference in controlling risk, costs and exposure during an incident. Effective incident response processes can reduce the risk of future incidents occurring.
With an effective incident response plan, you will be able to detect incidents at an earlier stage and develop an effective defence against the attack.
IT Governance's cyber security incident response consultancy service is based on ISO 27001, ISO 27035 (the international standard for cyber incident response) and best-practice frameworks developed by CREST. It can help you develop the resilience to protect against, remediate and recover from a wide range of cyber incidents.
Find out more about cyber incident response management
Why choose IT Governance?
IT Governance has a wealth of experience in the cyber security and risk management field. As part of our work with hundreds of private and public organisations in all industries, we have been carrying out detailed risk assessments for more than ten years. All our consultants are qualified, experienced practitioners.