Services

CISC Limited services are constructed around three fundamental principals.

Assurance

Business Owners benefit from being provided with contextual information to improve decisions made within an organisation. This can be achieved through compliance audits, workflow assessments, and third-party risk assessments of partners and suppliers. Effective asset cataloguing, management, and monitoring are essential, as well as vulnerability management of critical and external systems through enterprise products. This can ensure that business risk is known, recorded, and treated appropriately.

Consulting

Discovery of business operations and strategy, combined with effective listening of crucial personnel, leads to opportunities for improvement with an ultimate objective to identify and reduce risk concerning Information Security. Alignment to an established security program can be highly beneficial, particularly if certification is required for presenting due care to customers and partners. Information Security governance is crucial, and organisations should recognise the need for a leader in this respect. A Chief Information Security Officer (CISO) is an excellent fit for this objective, including those provided on a contract basis (vCISO).

Training

Security is a collective responsibility, and people within an organisation should be empowered and trusted to do their job; however, they should also be trained, particularly concerning Cyber Security threats. Privileged roles, such as Security Analysts or System Engineers, benefit from professional training directly tied to trusted certifications. Everyone benefits from awareness and best practices training, which can be provided in-person, through virtual meetings, and computer-based training (CBT), which incorporates tests and campaigns.