Bespoke consultancy services
If our off-the-shelf consultancy packages do not meet your requirements exactly, we can put together a bespoke package combining online support and on-site activity with whatever other products and services you need.
These might include training, security testing, books and toolkits, staff awareness e-learning courses, or ongoing service contracts.
Our services are available anywhere in the world, and are created in line with a customised plan to get your organisation ready for accredited certification within an agreed time frame.
Want to know more about consultancy services?
If you would like to know more about the consultancy options available to you, want to discuss a bespoke package, or have a question about any of our services, contact our consultancy experts today.
Contact us
Corporate and Enterprise Consultancy
If you are a large enterprise and our fixed-price solutions don’t suit your needs, we can create and deliver a consultancy service designed specifically for your organisation.
Learn more about our corporate and enterprise consultancy
Our consultancy services
We provide consultancy services in all of the following areas.
ISO 27001 and information security
We’ve successfully helped over 800 companies – from SMEs to FTSE 100 companies –achieve ISO 27001 certification over the past 15 years. Whatever your ISO 27001 consultancy needs, we can help you implement an ISMS (information security management system) and achieve certification efficiently and cost-effectively.
Find out more about our ISO 27001 and information security consultancy
Cyber security consultancy
From cyber reviews and health checks to incident response consultancy and advice on preparing for SOC (System and Organization Controls) 2 audits, our cyber security experts can help organisations of all types and sizes – in both the public and private sectors – to address their cyber security risks efficiently and effectively.
We have also been approved to provide 69 cyber security services via the government’s Digital Marketplace for Cloud support.
Find out more about cyber security consultancy
Penetration testing
Penetration testing (pen testing) identifies and tests exploitable vulnerabilities within your organisation’s infrastructure and applications, allowing you to secure your systems where they are most vulnerable to attack.
IT Governance provides a range of bespoke penetration tests that deliver cost-effective and practical solutions to help you meet your legal, regulatory and contractual requirements.
IT Governance Ltd is a CREST member company, so clients can rest assured that our penetration tests will be carried out to the highest standards by qualified and knowledgeable individuals.
Find out more about our penetration testing services
PCI DSS compliance
IT Governance is a PCI QSA (Payment Card Industry Qualified Security Assessor) company. If your organisation is a merchant or service provider, we can help you improve your cyber security and comply with the PCI DSS’s requirements in the shortest time frame and for the minimum cost.
Whether you need help reducing your CDE (cardholder data environment) or completing an SAQ (self-assessment questionnaire), or your increased transaction volumes have seen you move up a level and you now need a QSA-led RoC (Report on Compliance), our QSAs and PCI DSS experts can help you find the right way forward.
Find out more about our PCI DSS consultancy services
ISO 9001 and quality management
With over 1.1 million certifications worldwide, ISO 9001 is globally recognised as the best framework for helping organisations identify product or service deficiencies and make improvements quickly. This results in less waste, less inappropriate or rejected work, and fewer complaints. Our ISO 9001 consultants can provide all the support you need to implement an ISO 9001-compliant QMS (quality management system).
Find out more about our ISO 9001 and quality management consultancy
View all consultancy services