Get in touch with Phoenix
Arrange an initial conversation with one of our Security, Risk and Compliance Specialists by filling in this short form and our experts will get back to you.
Our Governance, Risk and Compliance (GRC) services are designed to support your organisation to create, review, revise and meet your organisation’s overall governance and risks.
Meeting legal and regulatory requirements, we offer a wide range of services, led by our in-house GRC Consultants.
If you’re looking for a simple, but effective way to protect your organisation, Cyber Essentials delivers a government backed scheme against a whole range of the most common cyber attacks. Cyber Essentials self-certification can be daunting for some, so we can support you with your application. For Cyber Essentials Plus, a hands-on technical verification is needed, from vulnerability scanning and penetration testing – talk to us for more information.
We offer a range of GAP analysis services from ISO standards, risk planning, security infrastructure services, business continuity (BC) and disaster recovery (DR) and cyber security incident response planning. From readiness assessments to prioritisation and remediation guidance, we can support you end to end.
If you are looking to align against ISO standards, we can support you in implementing and auditing against a wide range of standards, from ISO 9001 (Quality Management), ISO 27001 (Information Security Management), ISO 22301 (Business Continuity), ISO 31000 (Risk Management) through to BS 10008 (Legal Admissibility of Electronic Information) and more.
With the wide variety of security frameworks and requirements through regulators and industry best practice, vulnerability scans and assessments in the attempt to search systems for known vulnerabilities or, where you require a penetration test, to actively exploit any weaknesses in your network. We deliver CREST and CHECK services with full remediation advice.
As your take all necessary precautions to protect your network and users, it is important to ensure that you have a robust set of policies and procedures that support your people and technology decisions. Phoenix can support you in reviewing and creating key documentation as part of your information security and management systems.
Effective risk management across the whole organisation is an essential business function which ensures the sustainability, security and growth of your organisation. By assessing your risks, with effective treatment and risk management planning can support the prevention of risks as a means to meet your objectives. Our risk management services cover not just technical controls, but across the whole organisation, meeting many risk best practice frameworks.
Using our inhouse EU-GDPR-Practitioners, we can undertake data governance reviews and support you with DPIA’s and other data governance requirements in line with legal and regulatory requirements.
The Phoenix Governance, Risk and Compliance Team are here to work alongside you in the event of a breach to align the best course of action from the investigation, technology re-build, governance management, policy and other regulatory notifications through to communications strategies for all interested parties and more.
We can extend services through one of our partners, such as Check Point, and their incident response teams, who will engage and handle the security incident and deliver a post-incident report with technical details of the attack, root cause analysis and recommendations for prevention and mitigation strategy. We can further assist with cyber security incident plans, risk strategies, business continuity and disaster recovery policies, processes and tabletop exercises.