If you opt for an ongoing assessment, our team of project managers and security consultants will work closely with your teams to understand your current security state, identify gaps in your implementation of CIS controls, and recommend the most effective ways to fill those gaps and move closer to full compliance. Controls will be assessed and validated periodically (depending on the agreed upon frequency) to ensure ongoing compliance. With this approach, the program can sustain maturity.
We will keep a close watch on evolving security threats and changing standards to quickly notify you when there is a need to implement patches, secure systems that are vulnerable to new threats, and upgrade your security-monitoring, threat-detection, and incident-response policies and tools. Like one-time assessments, ongoing assessments, too, can be conducted either on-site or remotely, or include a combination of both.