Measure your Security Program

RISKAWARE CAN MEASURE YOUR SECURITY PROGRAM

Are you secure in 2023?

Invest in your Cyber Security resilience. Be ready. Have a plan. Our experts can assist your team with a plan to combat.

The Need.

Your organization is needing to complete a security gap assessment to better understand the cyber risks to the business, your client data risks and potential gaps in operations. An assessment of your technical controls, policies and procedures will provide you with a clear and prioritized path on how to improve your cybersecurity program.

Learn more

An assessment of your technical controls, policies and procedures will provide you with a clear and prioritized path on how to improve your cyber security program.

Our work includes a benchmark assessment, roadmap recommendations and risk prioritization.

RiskAware will perform a cyber security gap analysis covering the following areas:

Threat Model.

Working with your assigned team, RiskAware will help to identify 3-5 primary areas of concern to evaluate the existing security program’s effectiveness. Examples of common threat models include Ransomware attacks, business email compromise, potential data breach avenues by external attackers or insider risk.

Controls, Policies, and Procedures.

RiskAware will evaluate the client’s security program across the following domains, following the CIS v8 Top 18:

Inventory Controls – Hardware, Software, and Cloud Services
Vulnerability Management
Use of Administrative Privileges
Configuration of Devices
Policies and Standards
Backup and Restore Capabilities
Controls – Anti-Malware, Email, Web, Firewalls
Account Management and Access Control
Data Protection
Boundary Defenses
Wireless Access Control
Logging and Monitoring
Monitoring
Security Awareness & Training
Application Security
Incident Response and Penetration Testing

Process.

We will conduct gap assessment interviews with provided IT contacts via a secure remote session. This will consist of up to two, two-hour sessions reviewing controls, policies and procedures against the above domains.

RiskAware will also gather additional information to establish a threat model, understanding of key and critical assets (systems and data) and perform a baseline Dark Web Assessment and domain security review.

Deliverables.

RiskAware will deliver within 30 days from the provision of interviews or questionnaire, a written report detailing strengths and weaknesses of their organization against the above domains, readiness to deal with threats identified in the threat model and a high level strategic security program roadmap with prioritized recommendations.

RiskAware will also provide additional information including a preliminary Dark Web Assessment and external threats based on your domain name. It also includes 60 minute executive briefing of the findings, and be available to answer any questions about the report.

If there are further actions requested post-report-delivery these would be part of a separate engagement.

Cost.

A Fixed Rate of $4750 CDN | $3500 USD

Contact Us.

Tell us More About Yourself

Please complete the information here. A member of our team will reach out to you to gather more information

vCISO

CYBERSECURITY LEADERSHIP AT YOUR FINGERTIPS

Risk Management

IDENTIFYING & MITIGATING POTENTIAL THREATS

Data Privacy

COMPLIANCE & PROTECTING SENSITIVE INFORMATION

Find out your cybersecurity readiness score now!

Elevate Your Organization's Defense with Cybersecurity Awareness Training

Human error is the leading cause of data breaches. RiskAware’s Cybersecurity Awareness Training equips your team with the knowledge and skills to identify and prevent cyber threats before they become costly incidents. Our program covers:

Don’t wait for a breach to happen—get started today.

News & Press

Get the latest updates

Newsletter

Weekly know-how in your inbox

Free Tools

Download yours now

Dark Web Scan

Is your info safe?

Cyber Score

Get immediate results

Solutions with Proven Results