This website uses cookies. View our cookie policy
USA
Select regional store:

Consultancy for small businesses

For organizations of any size, the costs of a data breach from short-term financial penalty to long-term reputational damage are incalculable.

Many small businesses underestimate the extent of the cybersecurity threats they face and lack the resources to address them.

At IT Governance, we’re clear that best-practice cybersecurity needn’t be beyond the reach of any organization.

We’ve worked with hundreds of small businesses and know that you need to establish strong foundations that will continue to serve your business as it grows.

We also appreciate that your time and resources are limited and you need to focus on your core operations, so we provide all that you need to become cyber secure.

We have a complete set of products and services, including information and advice, books and tools, consultancy and technical services, and training and staff awareness for IT governance, risk management, compliance, and IT security.

This means you can get everything for your project in one place.

Our flexible and cost-effective delivery options mean that, whatever your available resources, knowledge, preferred project approach, or budget, we can provide a solution that will make the most of your assets.

 

Contact us

For more information, or to speak to a member of our team about how IT Governance can help your project, email servicecenter@itgovernanceusa.com or call 1 877 317 3454.

 

Services include:

Cyber Essentials consultancy

Cyber Essentials is the UK government-backed cybersecurity certification scheme that sets out a strong baseline of cybersecurity suitable for organizations in all sectors. The scheme addresses five key controls that, when implemented correctly, can help prevent around 80% of cyber attacks.

Our fixed–price Cyber Essentials packages can help you achieve certification to either Cyber Essentials or Cyber Essentials Plus at a pace and for a budget that suits you.

  • The Cyber Essentials Get A Lot Of Help certification package includes a full-day, on–site consultancy service, Cyber Essentials Documentation Toolkit, Cyber Essentials certification and the required CREST–approved vulnerability scans, all of which will help you to achieve Cyber Essentials certification at the first attempt.

    Find out more about Cyber Essentials Get A Lot Of Help >>

  • The Cyber Essentials Plus Get A Lot Of Help certification package includes a full–day, on–site consultancy service, the Cyber Essentials Documentation Toolkit, Cyber Essentials Plus certification, in addition to the required tests and scans, all aimed at helping you meet the requirements of the scheme and successfully achieve certification to Cyber Essentials Plus.

    Find out more about Cyber Essentials Plus Get A Lot Of Help >>

All Cyber Essentials certifications are managed through our CyberComply online portal. This is a unique online service that enables companies to follow a convenient do–it–yourself approach, including managing and tracking the certification process.

Click for more information about Cyber Essentials solutions >>


FastTrack™

TIT Governance’s FastTrack™ consultancy packages guarantee fixed–price certification to international standards within a set timeframe for smaller organizations based at a single location.

Follow the links below for more information on individual packages:


Public–sector consultancy

Whether you are a public-sector organization or a private-sector business that works with the public sector, you will have a number of regulatory and compliance obligations to fulfil, such as PCI DSS Security Standards and the EU General Data Protection Regulation (GDPR).

Click here for more information about public-sector consultancy >>

 

PCI DSS consultancy

If your organization is a merchant or service provider that handles payment card data, it must comply with the PCI DSS (Payment Card Industry Data Security Standard).

Even if you outsource card processing activities to a third party, you’re responsible for ensuring all contracted parties comply with the Standard.

Whether you need help reducing your cardholder data environment (CDE) or completing a self-assessment questionnaire (SAQ), our PCI DSS experts can help you find the right way forward.

Click here for more information about PCI DSS consultancy >>

SOC audits based on ISAE 3402 and SSAE 16

A SOC audit is often a prerequisite for service organisations to partner with or provide services to tier–one organisations in the supply chain.

SSAE 16 and ISAE 3402 are independent, industry–recognized, third–party assurance standards that are used to audit service organisations, such as outsourced hosting providers and Cloud service providers. Many organisations that have undergone a SAS 70 in the past will now require a SOC 2 report.

IT Governance can assist with the full SOC process, from conducting a readiness assessment and applying the necessary remedial measures, through to testing and reporting, by virtue of its partnership with a leading PCAOB–registered CPA firm.

Click here for more information about SOC audits based on ISAE 3402 and SSAE 16 >>
 

For more information about IT Governance’s other consultancy services, please visit our consultancy homepage >>

 

Contact us

For more information, or to speak to a member of our team about how IT Governance can help your project, email servicecenter@itgovernanceusa.com or call 1 877 317 3454.