After an incident
Confirm what happened, why it happened, and what should change.
ASSESSMENTS & RCA
Security assessments and RCA that tell you not just what happened, but what to do next.
We help teams understand what happened, where the gaps are, and which actions matter first after incidents, readiness reviews, or security program uncertainty.
WHEN THIS HELPS
Use this when you need a clear basis for decisions.
Before audit or NIS2 review
Check whether roles, evidence, and procedures are ready.
When priorities are unclear
Turn scattered findings into a short, defensible action list.
ASSESSMENT OPTIONS
Choose the assessment that matches the decision you need to make.
Readiness Review
Best for: Teams preparing for incidents, audits, or NIS2 discussions.
A focused review of roles, processes, escalation paths, and response readiness.
- Current-state view of response strengths and gaps
- Short list of immediate improvements
- Management-ready summary
Root Cause Analysis
Best for: Teams that need to understand a confirmed incident or recurring issue.
A structured investigation that explains what happened, why it happened, and what should change.
- Clear incident timeline
- Confirmed root causes and contributing factors
- Practical remediation and prevention steps
Maturity Assessment
Best for: Leaders who need a clear view of security priorities.
A program-level review across procedures, monitoring, ownership, and response capability.
- Map of major risks and coverage gaps
- Prioritised improvement roadmap
- Executive-ready summary
HOW IT WORKS
A focused engagement, from evidence to action.
01
Scope
We agree on the decision you need to make, the systems or incidents in scope, and the evidence available.
02
Analyse
We review logs, documents, interviews, controls, and timelines to separate assumptions from confirmed facts.
03
Prioritise
We set the concrete actions: who does what, how much effort it takes, and in what order.