Core Package – Build the Foundation. Formalize the Practice.
A cybersecurity advisory plan for growing teams that need structure, clarity, and control. Perfect for those preparing for ISO, GDPR, or customer security assessments.
What’s Included – Monthly Scope
| Feature | Description |
|---|---|
| ✅ 2 consulting days/month | Split across policy creation, controls, or coaching |
| ✅ 1 custom policy or procedure | Access Control, Incident Response, etc. |
| ✅ 1 technology-specific control set | E.g. Email, VPN, Google Workspace, Azure |
| ✅ Information asset classification | Confidentiality, Integrity, Availability lens |
| ✅ Key Risk Indicators review | Select and define 2–3 KRI per month |
| ✅ 3 CISO Toolkits | From our curated digital resource library |
| ✅ Email & Slack/Asana support | Light-touch async collaboration |
Who is this for?
- Scaling SaaS or service providers
- Teams under vendor/client security scrutiny
- Companies seeking ISO 27001, KVKK, or GDPR readiness
- Organizations without security policies or asset classification
How We Work
We bring documentation and discipline to your security journey.
Discovery Session
Define priorities (risk, audit, or documentation)
Policy & Control Drafting
Delivered in Word/Google Docs format
Classification Mapping
Collaborative asset identification
Report Delivery & Retrospective
PDF or shared dashboard
All deliverables are audit-ready, version-controlled, and easy to customize.