Frequently Asked Questions
Can MDR include response support?
Yes—MDR is strongest when linked to readiness and response playbooks.
Can you support both technical teams and leadership?
Yes — we work with operational teams on the detail and provide clear, decision-ready outputs for leadership (priorities, risk, and recommended actions).
Can you support urgent or live incidents?
Yes. If you need urgent help, please use the Contact page and mark the request as urgent.
Do we need tooling changes first?
No. Readiness is primarily process and coordination. Tools can follow where required.
Do you advise only, or implement changes too?
Either. We can deliver advisory-only, or provide hands-on support for agreed changes.
Do you always quantify risk in monetary terms?
Only when it improves decision quality. Sometimes clear prioritisation is enough.
Do you offer retained support?
Yes—especially for MDR, incident response readiness, and ongoing risk governance.
Do you provide 24/7 coverage?
Coverage depends on the engagement model—define what’s needed and we’ll match it.
Do you support NIST / ISO / NCSC and industry best practices?
Yes, all outputs are aligned to common frameworks and industry best practices.
Do you work with smaller teams?
Yes—our approach is designed to improve outcomes without requiring large in-house security teams.
Does this work for smaller teams?
Yes—prioritising key roles and behaviours is often more effective than broad campaigns.
How do you measure improvement?
We assess behaviour and outcome metrics rather than computer-based training videos or similar.
How quickly can you start?
Typically within days for discovery and walkthroughs. For delivery work, we’ll propose a start date based on scope and urgency.
Is this a sales call?
No. The purpose is to get clarification and see if we are a good fit for each other. If we can help, we’ll explain how. If we’re not the right people, we’ll tell you and suggest alternatives.
We’re small — do we need all of these services?
No. Most organisations start with one priority (e.g., incident readiness, MDR, or a risk assessment) and build from there. We’ll help you sequence work to match your budget and capacity.
What environments do you support?
Cloud, hybrid and on-premises identity and access, scoped for your platforms and any constraints.
What happens after the call?
We’ll prepare a written summary and send it to you, together with any recommendations. What happens next is up to you.
What happens in the 30-minute risk walkthrough?
A 30-minute call to understand your environment, current controls, and decision pressures. We’ll share initial observations and recommend clear next steps—whether that’s a focused assessment, readiness work, or improving detection and response.
What should I do to prepare?
Ideally, have some bullet points ready to discuss, but don’t worry if that’s not possible. We’ll have some prompts to help us get started.
Who is this designed for?
SMEs and mid-sized organisations, plus local/national government and policing teams that need proportionate, defensible security decisions without excessive overhead.
Who will I speak to?
One of our directors or a highly experienced senior consultant will be on the call.
Will this create more admin for teams?
Effective GRC reduces admin by standardising evidence and routines.
Will this disrupt operations or service delivery?
No. Recommendations are managed and prioritised by risk and practicality. Implementation aligns to your change control process.
Will you replace our tools?
Not necessarily. We can integrate with what you have and improve outcomes.