The process to understand your organisation's cyber health against the NIST Cyber Security Framework is fairly straightforward
. (See diagram)
After issuing a PO or paying the fixed price amount, the client books an initial 1 hour call with a consultant selected from our pool of experienced consultants.
The consultant will use this hour and gain an understanding of the business, its technology stack, threats and an its critical assets. The client and our consultant then agree on a schedule to complete the rest of the assessment after which the client receives a formal report with actionable recommendations.
We will review the following areas during our assessment:
For this exercise to be successful you must have all your resources available and documents ready for the call.
Please note: This is a fixed, low-cost opportunity for you to highlight your strengths and weaknesses. We do not test any controls. We will take your responses at face value and base our reports and recommendations on those responses.
We will provide you a concise report that highlights our key findings and opinions on your organisation’s cybersecurity, compliance and overall incident response readiness clearly highlighting any critical deficiencies that need urgent attention.
The report will include a summary list of recommendations.
Receive a high-level view of your organisations cybersecurity and incident response preparedness.
A fixed price assessment with no hidden costs.
We have assisted numerous organisations including FIFA, NHS, Capita, BNP Paribas, Formula One Racing, British Medical Journal, and many more with assessments and audits. Here's some feedback from just a few of them.
"I would recommend Cyber Management Alliance’s tabletop workshops to anyone genuinely interested in being on top of their cyber incident response strategies. The format and style of conducting the entire workshop is what I found a lot of value in. Most importantly, the scenarios on which the workshop was based were relevant to the business, making the exercise a great investment of time and resources."
"In order for BMJ to the right way forward we looked for a VCISO to advise us on the right way to do things and give us expertise. We went to Cyber Management Alliance and it's been about a year now and we ran workshops, looked at our response to incidents, created the incident response plan and we are in a position now where we understand our way forward. Our VCISO keeps us on our toes and overall it's been a very effective way of delivering expertise into the organisation that we wouldn't have normally had."
"The Cyber Crisis Tabletop Exercise and corresponding audit conducted by Cyber Management Alliance Ltd was expertly delivered and has given us insights to reinforce our cyber strategy by continuing to help build the picture of where we were, where we are now, and our next focussed steps. We will be engaging CM-Alliance on an annual basis."
Why not find out more about our audits and assessments, book a no-obligation discovery call with one of our consultants.
Amar and the team at Cyber Management Alliance have been a huge help in getting our firm positioned to deal with cyber security risk. Having opened our eyes to the variety and scale of challenges we face, and the potential financial consequences, they worked closely with us to improve our infrastructure, processes and understanding to embed cyber awareness into the firm. Their invaluable experience has guided us to the point where we should receive ISO27001 accreditation in the coming weeks – a key stamp of approval that lets clients know we take these risks very seriously.