Guides
Deep, practical guides for UK security, IT and compliance leaders — no fluff, no product pitches.
How UK companies get Cyber Essentials and Cyber Essentials Plus certified — scope, controls, timeline, cost and audit-ready checklists.
Read guideA practical ISO 27001:2022 implementation checklist for UK companies. Annex A controls, evidence expected by auditors, and typical time to certify.
Read guideStep-by-step UK GDPR breach response — how to notify the ICO within 72 hours, when to tell customers, and what evidence to preserve.
Read guideReal UK penetration testing prices for web apps, cloud, infrastructure and mobile. What drives cost, and how CREST vs non-CREST changes the price.
Read guideHow to choose a UK managed SOC — 24/7 coverage, MDR vs SOC-as-a-service, EDR/XDR integration, average response times and typical pricing.
Read guideA UK-focused ransomware recovery guide — first 24 hours, NCSC guidance, decision to pay, legal exposure, and rebuild sequencing.
Read guideUK phishing training that changes behaviour — simulation cadence, reporting culture, and how to measure real risk reduction, not click rates.
Read guideHow UK companies use fractional CISOs — scope, day rates, what to expect in the first 90 days, and when to hire a full-time CISO instead.
Read guide