Risk and Assurance Management
Effective risk management is at the core of good cyber security practice. Our risk and assurance assessment service comprises threat modelling, product and vendor assessments, and solution appraisal. We take a component driven risk management approach, thinking laterally to ensure all possibilities are considered.
Features
- Highly experienced consultants delivering service
- Risk management methodologies to suit your needs
- Tailored approach depending on sector and any regulatory requirements
- Risk strategy and governance advisory as required
- Security role definitions and responsibilities mapped and analysed
- Threat and risk assessment workshops followed by guided plan
- Risk register review with unbiased view
- Risk treatment and assurance plans
- Security gap analysis and remediation action planning
- Pragmatic and business sensitive approach to security controls
Benefits
- Establishes a clearly defined risk management approach
- Identifies pragmatic, appropriate, and cost-effective security controls
- Supports continuous and effective ongoing risk management
- Delivers business aligned risk management approaches
- Identifies risk-based compliance tools to simplify effective risk management
Pricing
£950 to £1,500 a unit a day
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
2 5 8 4 1 3 6 8 4 5 3 6 6 6 1
Contact
Somniac Security
Stephen Jones
Telephone: 44 07825967770
Email: stephen@somniacsecurity.com
Planning
- Planning service
- Yes
- How the planning service works
- We work collaboratively with the client to define requirements and map these against their business objectives. Once we understand their needs we will ensure that our service aligns with their priorities - whilst supporting them through the full lifecycle of delivery if required.
- Planning service works with specific services
- No
Training
- Training service provided
- No
Setup and migration
- Setup or migration service available
- No
Quality assurance and performance testing
- Quality assurance and performance testing service
- No
Security testing
- Security services
- Yes
- Security services type
-
- Security strategy
- Security risk management
- Security design
- Cyber security consultancy
- Security incident management
- Security audit services
Ongoing support
- Ongoing support service
- No
Service scope
- Service constraints
- No
User support
- Email or online ticketing support
- No
- Phone support
- No
- Web chat support
- No
- Support levels
- We work collaboratively with the client to define requirements and map these against their business objectives. Once we understand their needs we will ensure that our service aligns with their priorities - whilst supporting them through the full lifecycle of delivery if required.
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Developed Vetting (DV)
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
-
- Conforms to BS7858:2012
- CISSP
Social Value
- Fighting climate change
-
Fighting climate change
N/A - Covid-19 recovery
-
Covid-19 recovery
N/A - Tackling economic inequality
-
Tackling economic inequality
N/A - Equal opportunity
-
Equal opportunity
N/A - Wellbeing
-
Wellbeing
N/A
Pricing
- Price
- £950 to £1,500 a unit a day
- Discount for educational organisations
- Yes