Program Add-ons

Our Internal Audit service provides an independent, structured verification of your organisation's control environment as mandated by ISO 27001 and similar standards. We conduct structured stakeholder interviews to validate control operations and thoroughly review all provided evidence. You will receive a formal internal audit report documenting findings, observations, and actionable recommendations.

• ✓ Develop a comprehensive internal audit plan and schedule
• ✓ Conduct structured stakeholder interviews to validate controls
• ✓ Deliver a formal internal audit report with actionable recommendations

Get Started

Audit Assist provides targeted readiness and remediation support in the lead-up to your formal external audit. We identify compliance gaps through structured assessments and develop Corrective and Preventive Action (CAPA) plans to ensure your evidence set is complete. Our team will also organise audit materials and provide on-call support while the auditor is assessing your organisation.

• ✓ Conduct a structured readiness assessment to identify gaps
• ✓ Provide prioritised remediation guidance and CAPA development
• ✓ Manage audit coordination and provide external audit support

Get Started

This quarterly add-on programme maintains ongoing hygiene across three core governance areas: risk, user access, and vendor management. We facilitate periodic reviews of high-privilege account access and critically evaluate your vendor inventory status. By regularly updating your Risk Register with nominated owners, we ensure your compliance environment remains continually up-to-date.

• ✓ Review and update the Risk Register with nominated owners
• ✓ Facilitate periodic reviews of high-privilege user access
• ✓ Review and update the status of the critical vendor list

Get Started

The Cybersecurity Tabletop Exercise is a facilitated, scenario-based simulation specifically tailored to your organisation's threat profile and critical assets. We lead an interactive crisis simulation workshop using a custom scenario to effectively test your team's readiness. Following the exercise, you receive a detailed report documenting observations, identified gaps, and actionable improvement recommendations.

• ✓ Develop a tailored Scenario Design Document and Exercise Plan
• ✓ Facilitate an interactive crisis simulation workshop
• ✓ Produce a detailed post-exercise report with gap analysis

Get Started

Our Third-Party Risk Management service provides structured, evidence-based assessments to evaluate the security posture of your key suppliers. We design tailored security questionnaires and conduct direct technical interviews with vendors to review their available evidence. The assessment concludes with a comprehensive TPRM report documenting identified gaps and strategic recommendations.

• ✓ Design tailored security questionnaires and assessment criteria
• ✓ Conduct structured technical vendor interviews and evidence reviews
• ✓ Produce a final TPRM report documenting security posture and gaps

Get Started

Managed Security Responses handles inbound and outbound security enquiries on your behalf, effectively reducing the burden on your internal teams and keeping your sales pipeline moving. We expertly draft responses to prospect questionnaires and proactively prepare outbound evidence packages for customer-initiated audits. You also receive a quarterly summary of all questionnaire activity, outcomes, and recurring themes.

• ✓ Draft responses to inbound customer and prospect security questionnaires
• ✓ Prepare outbound evidence packages for customer-initiated audits
• ✓ Deliver quarterly summaries of questionnaire activity and outcomes

Get Started