This website uses cookies. View our cookie policy
United Kingdom
Select regional store:

Cyber Security Consultancy Services

IT Governance’s cyber security consultancy services are delivered by a team of experienced in-house consultants who have a deep understanding of the range of cyber risks facing organisations today, enabling you to implement the best possible security solutions for your budget and requirements.

Our services can be tailored for organisations of all sizes in any industry and location. Our proven online consultancy solutions deliver significant savings when compared with regular face-to-face consultancy.

For information about IT Governance’s other consultancy services, see our Consultancy home page >>


On this page


ISO 27001 consultancy

ISO 27001 is the international standard that describes best practice for an ISMS (information security management system). It is globally recognised as the most comprehensive solution to achieving an enhanced cyber security posture.

We’ve helped more than 400 organisations achieve accredited certification to the Standard, and we can provide implementation support to suit every budget or timescale, wherever you are in the world. From fixed-price packages to bespoke consultancy, we can supply everything you need to implement an ISO 27001-compliant ISMS in your organisation.

Click here to find out more about our wide range of ISO 27001 implementation solutions >>


Cyber Health Check

The three-phase Cyber Health Check combines on-site consultancy and audit with remote vulnerability assessments to assess your cyber risk exposure. Our four-step approach will identify your actual cyber risks, audit the effectiveness of your responses to those risks, analyse your real risk exposure and then create a prioritised action plan for managing those risks in line with your business objectives.

Click here for more information about our Cyber Health Check service >>


NCSC Certified Cyber Security Consultancy scheme

IT Governance has developed a new cyber security consultancy service aligned with the requirements of the NCSC’s Certified Cyber Security Consultancy (CCSC) scheme.

There are currently four CCSC categories, and IT Governance offers consultancy services aligned with each:

Click here for more information about the NCSC CCSC >>


G-Cloud supplier assurance

The G-Cloud framework allows UK Government bodies to purchase Cloud services, and is aimed at making public-sector Cloud service acquisition quicker and more transparent. This selection process eliminates the need to go through a full tender process. IT Governance has the security expertise and industry knowledge to help Cloud service providers that want to apply to join the G-Cloud framework: we can provide expertise in the form of information assurance audits, ISO 27001 certification, and NCSC Certified Professionals (CCPs) to undertake the necessary assurance activities.

Click for more information on bespoke G-Cloud assurance consultancy >>


High-Level Cyber Review

This consultancy service provides an evaluation of your organisation’s cyber security posture and a documented summary of high-level recommendations for improvements.

It is particularly useful as a preliminary step towards compliance with laws, standards and frameworks such as the GDPR, ISO 27001, Cyber Essentials and 10 Steps to Cybersecurity.

Click here for more information about our High-Level Cyber Review >>


SOC audits based on ISAE 3402 and SSAE 16

A SOC audit is often a prerequisite for service organisations to partner with or provide services to tier-one organisations in the supply chain. SSAE 16 and ISAE 3402 have replaced SAS-70 as the new global standards for assurance reporting for service organisations. Many organisations that have undergone an SAS 70 in the past will now require a SOC 2 (II) report.

IT Governance can provide assistance throughout the entire SOC preparation, remediation, testing and reporting process.

Click here for more information about SOC audits based on ISAE 3402 and SSAE 16 >>


Cyber incident response management

The speed at which you identify a breach, combat the spread of malware, prevent unauthorised access to data, and remediate the threat will make a significant difference in controlling risk, costs and exposure during an incident. Effective incident response processes can reduce the risk of future incidents occurring.

With an effective incident response plan, you will be able to detect incidents at an earlier stage and develop an effective defence against the attack.

IT Governance's cyber security incident response consultancy service is based on best-practice frameworks developed by CREST, ISO 27001 and ISO/IEC 27035 (the international standard for cyber incident response), and can help you develop the resilience to protect against, remediate and recover from a wide range of cyber incidents.

Click here for more information about cyber incident response management >>


Why use IT Governance?

IT Governance has a wealth of experience in the cyber security and risk management field. As part of our work with hundreds of private and public organisations in all industries, we have been carrying out detailed risk assessments for more than 10 years. All our consultants are qualified, experienced practitioners.

Click here for more reasons to engage IT Governance as your consultants >>


How to engage us

For more information, or to speak to a member of our team about how IT Governance can help with your project, email or call +44 (0)845 070 1750.

Return to the consultancy homepage >>