Security GAP Assessment

Recognising Strengths, Identifying Improvements


Most organisations continue to invest in technology and services to reduce their risk exposure.  However, it is common for businesses to direct investment and select controls that have little or no material impact on reducing the threats posed by cyber attackers.  

Often, these “next generation” technologies are procured as a result of media scare mongering or vendor misdirection, and over emphasis on their specific technologies.

CM-Alliance’s unique GAP assessments, also often called maturity assessments,  carried out by our leading team of experts, can help you swiftly :

  • Summarise your investments to date.
  • Identify areas of strength and qualified domain practices, and vulnerable or weak controls.
  • Identify weaknesses in your compliance against standards such as PCI-DSS, ISO 27001:2013 and other HMRC frameworks.

After the analysis, we publish a report that details the findings of our gap analysis.

Areas of a Security GAP Assessment

We can carry out a GAP assessment in the following security and compliance domains:

  • ISO 27001:2013.
  • PCI-DSS.
  • Cyber Essentials & Plus.
  • Cyber Incident Response.
  • Cyber Crisis Management.



Ransomware Response Checklist

Fill in the form below to receive the free checklist.

Book a call to discuss or ask any questions about the course. Please don't forget to change your location first.