Our Security Management Framework is designed for small and medium organisations who aren't yet in a position justify a full time IT Security professional, but have a need to start addressing IT Security risk. That need might be driven by their own customers, by a recent bad experience, or just a sense that bad experience might be just around the corner.

For 10 to 20% of the annual cost of a full time CISO, small and medium organisations can use the Security Management Framework to address the core requirements of that role at a fraction of the cost.

We'll guide you through three key phases -

• Creating a prioritized IT Security Risk Assessment customized to your specific situation, but based on a proven template of common risks so we can get you up and running quickly.

• Developing a Security Improvement Plan, calibrated to your budget and targeted to address priority risks.

• Establishing an IT Security Management process within your organisation to monitor progress against the plan, and re-assess risk as things change.

These core tasks are all required as part of the main security standards like ISO27001 and Cyber Essentials, and are the key disciplines that underpin all effective IT Security Management.

Addressing your security risks will help you protect future operations from disruption, minimize the risk of reputational damage and protect yourself from regulatory fines.

Adopting our Security Management Framework will help you start addressing your security risks in a practical and pragmatic fashion, and will also help start a journey towards certification.

Our program will also help meeting the needs of your customers, who will often require an active Security Management program in order to approve you as a supplier.