Cybersecurity Advisory Service

We create a cybersecurity plan tailored to the needs of your organization

We have three cybersecurity advisory services

Essential

Advanced

For certification

Basic Cybersecurity Advisory Service

The main objective of this service is to provide you with a basic cybersecurity plan adapted to the specific needs of your organization.

An adapted use case is carried out
The aim is to implement the basic documentation of your Information Security Management System (ISMS) according to ISO 27001 and ENS (medium-high category).

.

Activities

Nanfor will be in charge of carrying out a series of activities to ensure the correct development of your basic cybersecurity plan. The service provided will allow you to:

Understand the current risk situation of your organization, identifying the most valuable assets and data for your activity.
Ensure the continuity of your SME in the event of potential security incidents, minimising the risk of business interruptions.
Develop and provide a detailed response plan for security breaches, defining specific protocols and actions in the event of a cyberattack.
Define and establish, together with you, a personalized cybersecurity strategy in the short and medium term.
Comply with regulations and security standards related to data protection and information security.
Prepare the basic documentation for the implementation of an ISMS (ISO27001 and medium-high ENS) for a core service offered to clients or public administrations.
Develop and execute a use case tailored to your SME using appropriate techniques in the area of cybersecurity.
Identify opportunities or possible uses of AI in the field of cybersecurity.

Scope of the Cybersecurity Advisory Service - Basic

Service value 6000 euros

_________________________________________________

Advanced Cybersecurity Advisory Service

You can request this Advisory Service if you already have basic security protection and a cybersecurity plan, but you want to learn about more advanced protection systems.

.

Activities

Nanfor will be in charge of carrying out a series of activities to ensure the correct development of your advanced cybersecurity plan. The service provided will allow you to:

Analyze and perform penetration tests and analysis of possible vulnerabilities in your organization, knowing the technological and operational environment in which you operate.
Implement cybersecurity procedures and tools for the daily management of your organization. This way, you can prevent, detect and respond to threats.
Proactively protect your organization against data-targeted attacks, improving threat resilience and responsiveness.
Raise awareness among your employees about the importance of cybersecurity and foster an organizational culture focused on cybersecurity and risk management.
Identify opportunities or possible uses of AI in the field of cybersecurity.
Develop and execute a use case tailored to your organization using appropriate techniques in the area of cybersecurity.

Scope from the Cybersecurity Advisory Service - Advanced

Service value 6000 euros

_________________________________________________

Cybersecurity Advisory Service - Certification Preparation

If you already have basic security protection, an adapted plan and the basic ISMS document structure, the main objective of this service is to help you with the implementation of advanced protection systems, taking advantage of the capabilities of artificial intelligence and preparing you to submit your ISMS for certification.

.

Activities

Nanfor will be in charge of carrying out a series of activities to ensure the correct development of your advanced cybersecurity plan. The service provided will allow you to:

Analyze and perform penetration tests and analysis of possible vulnerabilities in your organization, knowing the technological and operational environment in which you operate.
Review your cybersecurity policies, plans and procedures, identifying deficiencies and areas for improvement.
Proactively protect your SMB against data-targeted attacks, improving resilience and threat response capabilities.
Raise awareness among your employees about the importance of cybersecurity and foster an organizational culture focused on cybersecurity and risk management.
Prepare the documentation so that you can submit your ISMS certification for a core service offered to clients or public administrations (ISO27001 and medium-high ENS, according to the CCN-STIC 825 Guide). Certification not included.
Develop and execute a use case tailored to your SME using appropriate techniques in the area of cybersecurity.