Skip to main content
 Secure Matters

Every day there are thousands of information security incidents. Attackers are constantly learning new ways to try and get unauthorised access to information used by organisations all over the world. They don’t care what kind of organisation you are, charity, public service, or commercial, every organisation is a target.

If you become a victim of an attack you stand to lose the good will of your stakeholders and may also be investigated by your local data protection authority if the attack involves personal data. Recovering from an incident can take time and a lot of money.

A lot of organisations will sell you solutions to specific types of information security threats and vulnerabilities.

We are different. We help you put in place governance, risk, and compliance systems so you can be sure you have the right controls in place for the threats and vulnerabilities that your organisation faces.

We can help you get certified with Cyber Essentials, Cyber Essentials Plus or ISO 27001. These certifications will help you to improve your management of information security.

Or we can start with a workshop for your board to develop an information security governance plan or conduct a gap analysis for you against one of the three certifications.

Get the Right Help, When you Need It

Advisory Services

Fractional help with information security strategy and programme development. The expert guidance you need to stop guessing or hiring expensive resources.

Done for You Services

We can provide done for you services to get you to the place you want to be. Whether that’s creating an information security governance plan, getting certified with Cyber Essentials (Plus), or ISO27001. We are the experts at implementing, maintaining and auditing information security management systems, so you don’t have to be.

Everything in Between

One-time assignments like policies, audits, questionnaires, risk assessments, incident response plans, auditing and more. Whatever your information security governance, risk, or compliance challenge, we’re here to help.

Information Security Governance in 3 Easy Steps

Step 1: Analyse

Determine your current situation.

Conduct a gap analysis against Cyber Essentials, ISO27001 or your own objectives for information security.

Step 2: Plan

Create a plan.

Prioritise actions based on the risks to your organisation, your objectives and your resources.

Step 3: Remediate

Take action to improve your information security posture.

From a self-assessed programme to second or third party audits, we can help you reach the objectives which you set for your organisation.

Discover a better way to manage information security governance, risk, and compliance

Discover a better way to manage information security governance, risk, and compliance


If your information security governance feels too complicated or isn’t delivering the results you need, let us help you. Book a call or get in touch to arrange a free consultation to see how we can help you.

Book a Free Consultation