Cyber Security Governance Health Check
Our methodology will include an analysis of the wider architecture, design, configuration and deployment of the underlying systems to ensure that security best practice is being followed. Assessments will be made through configuration assessments, interviews, documentation reviews and process observation.
Deliverables and Outcomes
Nettitude will debrief all findings to the board of directors, the executives responsible and the management team (as required). The results of the findings will be presented clearly along with recommendations, strategies and a roadmap for progress.
Achievable approaches with priorities and effort will be shown and discussed, along with the required technical documentation and project tasks.
You will be given everything needed to see clearly your current cyber security posture. The required approached needed to improve will be provided, along with the governance structures and mechanisms to manage cyber security in the future.
How will it be conducted?
The heath check will be conducted from two perspectives as follows:
The cyber governance and risk review will be conducted in order to establish the data and assets you have and the management of the locations and values they have to you. The review will ensure that the right oversight and protection is being enforced, managed and monitored within the company.
Advice and guidance on how this can done within the culture and ethos of your industry and company is a large part of any changes, recommendations or guidance issued.
This review will be conducted through analysis and investigations into the following areas:
Risk assessment, process and review
Data location, ownership and retention
Threat analysis (industry and location/technology specifics)
Governance structures, security programme reviews, security forums
Management of IT security operations
Incident response and event management
Testing programme and activities
Understand what you are protecting and why is critical – before you look at the controls and if they are effective.