Services

How we work with our clients

Four advisory practices. Each engagement is scoped individually; please get in touch to discuss your specific context.

Security risk assessment

Structured ISO 27005-aligned assessments scoped to your actual business. We produce risk registers your board can read, not artefacts for the archive.

ISO 27001 readiness and accompaniment

Gap analysis, remediation roadmap, and accompaniment through certification. Honest about effort, honest about timelines.

NIS2 and DORA advisory

Practical translation of NIS2 and DORA obligations into a workplan your security team can actually execute, with measurable acceptance criteria.

Security awareness assessment

Quarterly human-layer assessments that measure how your people respond — not just what they remember from last year's training.