The service gives you an ongoing measurement of your implemented IT security.
The measurements of your technical and organizational security level enable you in a simple way to prioritize your finances, so that you most easily achieve as high an IT security level as possible, taking into account your risk tolerance.
We use the recognized and widespread CIS Control framework tool (formerly CIS-20).
Unitas provides specialized and impartial staff and ensures that staff are kept up to date.
In order for us to provide the service in question, the following prerequisites must be met:
We need access to the company's IT administrator (s)
We must have access to the company's IT documentation (policies and technology)
We need access to 1 PC for CIS-CAT scanning tools
An initial CIS analysis must have been carried out (alternatively this can be purchased as a separate on-boarding service)
At relevant times during the work, we must have access to internal resources that have the necessary knowledge
You must approve a risk assessment model that reflects your risk tolerance
We must have a named Single-Point-Of-Contact internally with you (preferably a task - or process owner or equivalent)
The service is delivered in Danish or English.
How is this service provided?
CIS provides the greatest value if it is delivered on an ongoing basis as a service. When working actively with CIS and the resulting recommendations, it makes good sense to measure, for example, twice a year. Therefore, our recommendation is an update incl. a management report annually with a semi-annual follow-up.
However, CIS can also be delivered as a stand-alone task if, for reasons, the company simply wants a here-and-now measurement.
If you want a copy of an anonymized report, you can click here. Do not change anything in the subject field - just click 'Submit' and the report will return automatically. We use your e-mail address for nothing, so you do not have to fear being run out of doors.