PROFESSIONAL AND PROJECT SERVICES
Bring together the specific skills and expertise you need to drive your project forward.
We can support your organization in meeting your professional cyber needs.
Build on your own program based on your specific needs.
Sometimes you just need expertise in a few areas. We can help. Our consulting engagements work with your on-time needs.
We are driven to meet every company’s goals, timelines, and budgets.
Projects
Security
Program
Security
Awareness
Incident Response Planning
Security
Architecture
Business Continuity Planning
Data
Privacy
Services
Maturity
Risk Assessment
Policy
Development
Frameworks and
Compliance
HIPAA
Compliance
Penetration
Testing
Security Program.
Building a great security program starts with knowing what to look for.
Assess your existing program.
We will determine what your needs are and develop a custom program built on known frameworks and industry best practises. Our team will stay on top of current trends and shifting threats to stay ahead of your risk and build your resilience.
Services.
Assess your program, utilizing common security frameworks:
CIS
NIST
ISO
SOC2
CMMC
Make recommendations and develop a roadmap for improvements.
Create and develop a program specific to your organization.
Benefits.
Quick startup and turnaround. We will hit the ground in a ready state.
Access to a scalable and high performing team.
Aligned with current assessment goals and roadmap planning.
Security Architecture.
Design and build a resilient model from the start.
We call it Security-By-Design.
Architecture as it relates to cyber security is another important facet of your defences. Knowing where your “crown jewels” and data reside, and then how to protect them, establishes controls that are as vital as any other technology or process.
Services.
Providing architecture reviews
Roadmap
Design
Implementation
Benefits.
A readiness to work with your organizations existing team.
Team members with proven skills.
A plan to design with security in the forefront.
Business Continuity Planning (BCP).
Effective planning is the lifeboat to cyber resilience.
Being proactive is just the start.
Cyber Security incorporates the confidentiality, availability, and integrity (CIA) principle for availability, A BCP can help prepare, plan, and recover from outages and impacts, including those caused by a cybersecurity event.
Services.
Analysis of your business.
Where is your business vulnerable?
Assessment of your risks:
How likely is it to happen?
What effect will it have on your business?
Develop your BCP using our knowledge and expertise in the following areas:
IT Disaster Recovery
Workplace Recovery
Data Backup
Hardware Maintenance
Rehearse the BCP with your team.
Benefits.
Build confidence with your clients.
Stay compliant with today’s regulations.
Help mitigate both financial and cyber risk.
Incident Response Planning.
Being reactive is not enough. Build a proactive plan including incident response.
How you respond to an incident matters.
Let’s face it; that security incident is going to happen, if it hasn’t already. What will help define your resiliency, is your preparedness on how you handle the incident and how you respond.
Services.
Program review and design.
Incident Response Plan including retainers and preparedness.
Incident table top exercises and red teaming (a type of testing).
Benefits.
A plan for the “when” not “if”.
A tested system and process to respond.
An experienced team ready to take on your next threat.
Data Privacy.
Privacy and security go hand in hand.
Data is the “New Oil”.
Your organization needs protection at all levels. If you handle, collect, share, or analyze any form of data, you need to be aware of the regulatory requirements, and responsibilities of securing that data.
Services.
Assess and review your program using common privacy frameworks.
Perform a risk assessment of your organization’s privacy safeguards.
Access to a dedicated Privacy Officer as a service (fractional privacy officer).
Privacy training for your team.
Develop a privacy risk management program specific to your organization.
Benefits.
Access to a skilled educator on current privacy practises.
Protection of your organization’s sensitive data.
A strong understanding of today's regulatory requirements including GDPR.
Security Awareness.
A complete security awareness and training program for your organization.
Don’t be caught without the knowledge.
Your people are sometimes seen as the weakest link in the cyber security chain. What can make the difference is effective training and security awareness ideologies for you and your team.
Human risk is still the largest contributing factor. A customized RiskAware training program can help overcome this weakness to build your cyber resilience.
Services.
Choose between self-guided or in-person training.
Online training where employees can learn at their own pace.
Access to a comprehensive system:
Engaging training videos.
Employee security testing.
Employee training certificates.
New employee training.
Security tips and reminders.
Benefits
Access to a skilled educator on current security practises.
Easy to understand training.
Annual testing and new content.
Affordable pricing.
Excellent for companies with 1-1000 employees.
Services
Maturity Risk Assessment.
Be ready, have a plan. Our experts can assist your team with a plan to combat your maturity gaps.
Invest in your Cyber Security resilience.
Starting with a maturity and best practise assessment can help your organization identify gaps that you need to address before being compromised. RiskAware’s maturity risk assessment model will follow common principles and frameworks to develop and provide a report on the findings and provide next steps and priorities for remediation services.
Services.
Lite and Full assessments available.
Report on findings with next steps and priorities for remediation services.
We interpret the results of the assessment for you and work with you to implement the necessary changes.
Benefits.
Assessment of your technical controls, policies, and procedures will provide you with a clear and prioritized path on how to improve your cybersecurity program.
Understand your gaps and what items are leaving you vulnerable
Gain insight into criticality and what areas to focus on.
Understand where your organization is at risk.
Policy Development.
Policy and process are an important part of your cyber program. Let us guide you through the maze of documentation and processes.
Documentation is fundamental for success.
As one side of the cyber defense triangle, process and security policy has a defined role within your organization. RiskAware can help fill the formal gap that you need.
Services.
Existing policy and process review.
Build a comprehensive program designed to uplift and build from new.
A full suite of documents to support your business needs.
Benefits.
Experienced policy writing team.
Creation of a suite of security policies.
Ongoing maintenance and review process.
Cyber Security Frameworks and Compliance.
Staying certified and complying with requirements is an integral part of your cybersecurity program.
Let RiskAware help keep you in compliance.
The RiskAware team knows cyber security. The landscape is constantly changing, being on top of current frameworks or compliance requirements is essential for those needing or wanting to stay current.
Services.
SOC 1 and SOC 2
HIPAA Compliance
PCI DSS Compliance
Privacy and GDPR
Privacy and CCPA
ISO 27001/2
NIST 800-53
CIS Top 18
CMMC
Benefits.
Knowledge of current and trending changes in the field.
Expertise to get you across the finish line.
HIPAA Compliance.
The healthcare industry is under attack by cyber criminals trying to exploit hard-working employees to gain access to high-value patient data.
Through malicious emails and sophisticated means, cyber criminals are finding their way in with over two-thirds of healthcare breaches caused by negligence.
Make the road to HIPAA compliance a breeze.
Your organization needs a comprehensive cyber security solution design to improve your security posture on your time, while simplifying core HIPAA compliance requirements. RiskAware is here to help you do what you do best. Protect your patients, their data, and your organization from cyber criminals.
Services.
Development of HIPAA specific policies and procedures; including template documentation.
Annual training.
Annual security risk assessment with work plan.
Benefits.
We help you on your HIPAA security journey.
Be prepared and meet regulatory requirements.
Penetration Testing.
Hack yourself before someone hacks you.
Testing needs to be more than launching a tool and reviewing results. Learn from a team of RiskAware experts.
Services.
Application security testing.
Advanced testing against your application and mobile apps.
External and internal network pen testing.
Simulated attacks from a hacker viewpoint.
Objective-based pen testing.
Benefits.
Identify and remediate your gaps as they are discovered.
Access to experts who understand today's threats and challenges.
Testing of your planned changes.
Our Services
Managed
Services
Automation and Subscriptions
Cyber
Staffing
Private Client
Cybersecurity
Other
Resources