Skip to Main Content
This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
The GDPR penalties have begun. Can you afford not to comply? Act now and save 60% on our all-in-one solutions - offer ends 31 May!
Cyber Security Audit

Cyber Security Audit

SKU: 4835
Format: Consultancy

Evaluate your cyber security risk posture with this entry-level Cyber Security Audit.

Get a high-level evaluation of your organisation’s cyber security posture and a documented summary of recommendations for improvements with this one-day audit service..

It is ideal for organisations that are worried about cyber security or are starting from scratch.

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Know your risks

This Cyber Security Audit is an entry-level service that will identify your organisation’s risks, vulnerabilities and threat exposure, and give recommendations for improvement.

It is often a valuable precursor to organisations assessing their compliance with laws, standards and frameworks, such as the EU GDPR (General Data Protection Regulation), ISO 27001:2013, Cyber Essentials and the 10 Steps to Cyber Security.

It will also be of use to organisations seeking assurance about the effectiveness of the controls they have deployed.

Cyber Security Audit – scope of work

Our Cyber Security Audit service provides a high-level evaluation of the following areas:

  • Cyber risk governance
  • Critical cyber assets
  • Risk register
  • Legal, regulatory and contractual requirements
  • Policies and ISMS (information security management system)
  • Roles and responsibilities
  • Business continuity and incident management
  • Staff training and awareness
  • Cyber security controls
    • Technical
      • Secure, monitored, approved configuration of security devices
      • Managed perimeter controls – firewalls, intrusion detection system, data exfiltration prevention
      • Anti-malware
      • Access control
      • User privileges
      • Mobile devices, mobile working and removable media
      • Security monitoring
    • Physical
      • Secured perimeter
      • Access controls and logs
      • Designated safe areas
      • Third-party policies
      • Security of IT systems (server room, access points)

Upon completing this evaluation, IT Governance will submit a report within ten working days of the on-site visit. The report will typically contain the following elements:

  • Introduction
  • Executive summary
  • Review summary sections
  • Cyber audit recommendations based on findings
  • Concluding remarks that will outline associated IT Governance services and a point of contact


  • High-level and easy-to-digest summary.
  • Reduces overall organisational and cyber risk.
  • Minimal disruption to the business.
  • Expert advice from an industry-leading consultancy.
  • Assessment of a wide range of control areas.
  • Enables improvement of an organisation’s cyber security posture.
  • Further remediation support available if required.

Who is the Cyber Security Audit for?

Our Cyber Security Audit is particularly valuable for organisations that have yet to document their risks, vulnerabilities and threat exposure.

Why choose IT Governance?

  • We’re an approved member of CREST as a certified ethical security tester.
  • We’re certified to ISO 27001:2013, the world’s most recognised information security standard.
  • We’re certified to Cyber Essentials Plus, the UK government-backed cyber security certification scheme.
  • We have more than 15 years’ experience helping organisations secure their systems.

The service can be tailored to form part of an annual external security review process or to provide assurance to prospective clients, investors or the board of directors.

Customer Reviews

(0.00)stars out of 5
# of Ratings: 0