What We Do
We carry out a structured, independent review of your security posture, covering your people, processes, technology, and governance. We benchmark against recognised frameworks including NIST, ISO 27001, and Cyber Essentials, matched to your size and sector. You get a clear picture of where you stand, what needs attention first, and a practical plan you can actually follow.
Option A: Cyber Risk Snapshot (fast, focused)
A rapid, board-ready assessment that identifies your biggest risks and gives you a clear set of next steps. Ideal if you need quick clarity or a second opinion before a board meeting, renewal, or client audit.
Option B: Full Cyber Health Check (deeper, comprehensive)
A thorough assessment covering your entire security environment. Includes a maturity scorecard, detailed technical findings, and a prioritised roadmap with named owners and timelines. Best for organisations that want a complete baseline or are preparing for certification.
What You Get
Snapshot Deliverables
- 2-page executive summary (board-ready)
- Top 10 risks ranked by impact and likelihood
- 30/60/90-day prioritised action plan
- 45-minute leadership walkthrough (video call)
Full Health Check Deliverables (everything above, plus)
- Detailed technical assessment report
- Maturity scorecard across all control areas
- Prioritised roadmap with named owners and timelines
- Implementation quick wins list (things you can fix this week)
How It Works
1. Discovery Call
Free 30-minute call. We listen to your situation and confirm whether a Snapshot or Full Health Check is the right fit.
Day 0
2. Evidence Gathering
We send a short checklist of what we need: policies, diagrams, access lists. Most of it you already have.
Day 1-2
3. Assessment
We review everything against the relevant frameworks, interview key people if needed, and build your findings.
Day 2-8
3. Delivery + Walkthrough
You receive your report and we walk your leadership team through the findings and recommended next steps.
Day 5 or 10
Pricing
| Option | Organisation Size | Price |
|---|---|---|
| Cyber Risk Snapshot | Up to 25 employees | £950 (fixed price) |
| Cyber Risk Snapshot | 26 to 75 employees | £1,500 (fixed price) |
| Full Cyber Health Check | Up to 50 employees | From £3,500 |
| Full Cyber Health Check | 51 to 250 employees | From £6,500 |
| Full Cyber Health Check | 250+ employees | From £12,000 |
Price depends on complexity, number of locations, and technology environment. We confirm the exact price in your proposal before any commitment.
What We Need From You
- Access to 1-2 key stakeholders for a brief conversation (about an hour total)
- Current security policies and procedures, if they exist (do not worry if they do not)
- A network diagram or asset list, if available
- Recent audit or assessment reports, if any
If you do not have some of these, that is fine. Part of what we assess is what is missing.
What Is Not Included
- Penetration testing or vulnerability scanning (we can recommend trusted partners)
- Remediation or implementation work (this can be scoped separately)
- Ongoing monitoring (see our vCISO service for retained support)
Frequently Asked Questions
How long does it take?
The Snapshot takes 5 working days from kick-off to delivery. The Full Health Check takes 10 working days. Both timelines assume you can provide the requested evidence promptly.
Do you need access to our systems?
Not usually. This is a review of your governance, processes, and controls, not a penetration test. If we do need to see anything technical, we will agree that with you in advance.
What if we have never had a security review before?
That is perfectly normal, and it is exactly what the Snapshot is designed for. We will explain everything in plain English and make sure the recommendations are proportionate to your size and risk.
Can we get started quickly with the Snapshot?
Yes. The Cyber Risk Snapshot is a fixed-price service at £950. Book a short discovery call and we can typically get started within a few days.