As part of our Analyse services, the Cyber Security Posture Review (CSPR) helps organisations understand their current maturity, identifying risks and providing recommendations, mapped to the National Cyber Security Centre’s (NCSC) 10 Steps to Cyber Security, to ensure they operate an effective cybersecurity framework against the ever-evolving threat landscape.
Through a combination of questionnaires, face-to-face interviews and follow-ups we examine your maturity against each of these steps, identifying risks and providing contextualised, actionable recommendations. This approach ensures organisations have the foundations to defend against cybersecurity risks and protect information relating to customers, employees and business operations.
The Review Process
We work with you to understand your business and processes, and how you interrelate with your customers and supply chain.
We then work through the 10 Steps to Cyber Security, working with stakeholders through questionnaires and interviews ensuring they understand the reasons behind many of the questions. We find this approach builds a better understanding with staff on the requirements for good cyber security. During this process we will agree with you the items we require to support the review.
Once we complete the interviews, we then compile the data which allows us to be able to assess your capability against the 10 steps.
Your maturity level will then be determined by reference to a Capability Maturity Model (CMM) based on an industry standard methodology, providing you a maturity score between 0-5, where 0 is non-existent and 5 is optimised.
Once we have completed the assessment, we provide you with a full, comprehensive report. The report will provide you a CMM score, recommendations against the 10 steps, and will set out the priority of our recommendations to fast-track your maturity.
Once you have the report there might be aspects which require a technology review and possibly an update to any current systems. Digital Pathways can provide additional consultancy services to specify the types of solutions needed and the cost to deploy.
The Benefit To Your Company
Whilst the report documents your maturity against the 10 steps, its value to your company is the recommendations. Each recommendation will be specific to your environment, ensuring they are realistic and result in appropriate, measurable improvements to your cyber security position.
Whilst the posture review is not positioned as a deep-dive assessment, it will provide a top-down assessment, enabling you to identify areas that may require further review.
The 10 Steps
To learn more about our Cyber Security Posture review please call us for an open, commitment-free, discussion.
If you are considering taking any form of cybersecurity certification, such as Cyber Essentials or ISO 27001 we can help as part of our CSPR and provide you with a guaranteed pass. Please review our certification page here.
If you are concerned about your Cyber Risk, we have a fully managed service that reviews network vulnerabilities, trains users on malware and phishing trends assesses company reputational and data exposure and review of third parties to confirm their cybersecurity position.