Our Expertise and Experience

We’ve been delivering cyber security and data protection services into the military, public sector and commercial sectors for over 30 years . Our experience and expertise are extensive; here are some the areas our consultants have experience in from previous roles. Please get in touch to see how we can help.

Our expertise and experience

  • HMG Cloud Security Principles

    We’ve helped public sector organisations and MSPs migrate (up to) OFFICIAL (SENSITIVE) data to the cloud and apply the HMG Cloud Security Principles on MS Azure on other proprietary cloud environments through a templated control set methodology.

  • MS Azure Security

    We’ve helped organisations implement MS Azure Security controls to align to various regulatory and compliance control sets including NIST, CIS and HMG Cloud Security Principles.

  • NCSC Cyber Assessment Framework

    With broader adoption and stronger encouragement of the use of the NCSC CAF we are best placed to help with it’s implementation having helped organisations use this framework in carrying out cyber resilience assessments.

  • Critical National Infrastructure

    We have built and delivered some of the most stringent cyber security systems and compliance regimes for the most critical of infrastructures in the UK including road, rail, blue light, central government, medical data, nuclear and telecoms.

  • Managed Security Services

    We have built: SOCs, SEIMS, MDR systems, device mangement platforms, incident response processes, vulnerability management and threat intelligence platforms, risk and compliance portals - and implemented the people, processes and technology required to run them as cutting edge, first to market services.

  • Supply Chain Management

    We have been implementing supply-chain cyber-risk-management frameworks for over a decade. We have our own assessment and monitoring portal and have been responsible for assessing and advising 1000’s of suppliers on behalf of our clients.

  • Compliance Regimes

    Consultants at Cyro are deeply knowledgeable in the assessment and implementation of all regimes of InfoSec regulation, most pertinently:

    HMG/NCSC Cloud Security Principles
    HMG Electronic Communications Regulation
    NCSC Cyber Assessment Framework
    NCSC Supply Chain Security Guidance
    HMG Security of Network & Information Systems Regulations
    NIST Standards (Cloud Security Framework)
    CIS Benchmarks
    National Rail Standards
    PSN
    GDPR
    PCI DSS
    ISO27001, 22301, 20000

  • Network Security Architecture

    Cyro’s Security Architects specialize in helping clients assess, select and implement the most appropriate technologies (leveraging existing relationships and investments) to meet the clients requirements. Cyro’s consultants are able to scope, design, build, implement and manage:

    Managed Security Services architectures & Networks inc:
    Firewall, IDS/IPS, UTM, WAF
    SEIM, SOC, Incident Response & Analysis
    End-point Security, MDR
    DDoS Mitigation, Content Filtering, DNS
    Threat Intelligence
    Vulnerability Management
    SD-WAN/ SASE
    Zero Trust Architectures
    Identity & Access Management
    Secure Cloud Architectures – MS Azure
    ServiceDesk Integrations
    Risk & Compliance reporting portals

Contact us

Our Accreditations

  • ISO 27001 Lead Auditor

  • ISO 27001 Internal Auditor

  • ISO 27001 Lead Implementor

  • ISO22301 Lead Implementor

  • NCSC Lead Security Architect

  • NCSC Lead IA Auditor

  • NCSC Lead SIRA

  • Crest Registered Tester

  • OSCP

  • Microsoft Partner

  • Microsoft Azure Security

  • TOGAF Certified

  • CISSP

  • SC Clearance