Cyber Security Roadmap
Lead the way and stay on track on the road to desired security level
Building a security roadmap is a dynamic process, where Improsec will help you to identify security activities needed to reach your desired Security level. Knowledge about gaps will generate risk transparency, which will be used to prioritize projects and resources in a long-term action plan. Improsec’s Strategic Cyber Risk Advisor team will facilitate and assist you through the process and bring experience and knowledge to ensure a result, which is feasible in real life.
Value
A structured but dynamic approach enables the best possible way to reach the desired security level
A feasible overview in a complex security landscape
Opportunity to manage competencies and capacity while balancing cost
Ability to communicate the road ahead to needed stakeholders and project members
Overview of needed capacity and skillset to run desired security level provides an opportunity for organizational decision making
Product
The cyber security roadmap is a strategic security plan consisting of the following:
A long-term project plan showing the needed projects to reach the desired/recommended outcome
A one-pager for each project stating relevant information such as project goal, high-level steps, cost, dependencies, project risk, etc.
Recommendations for capacity and competencies to achieve the goals
Method
Our roadmap is based on a combination of meetings, workshops and interviews. Moreover, the desired security level is drawn from relevant and agreed upon frameworks such as CIS, ISO27x, NIST or other relevant sources. Measuring as-is and to-be is the preferred starting point.
Involvement
Through a close dialogue we will, together, agree on scope and content.