Our customer had seen successful growth for a number of years that was expected to continue, and were considering their business risks as part of normal planning cycle. The leadership team requested insights into their cyber security stance, and engaged Landfall to complete the review.

Assessed against a number of accepted frameworks, the customer environment was found to be unacceptable for the nature of the operation, and immediate remediation actions were given to substantially reduce their exposure.

Critically, the review contributed well beyond a boilerplate cyber security review. Landfall’s approach to the review established:

1. A completed view of all information assets within the organisation for the first time, and the associated security considerations

2. A sound business framework against which information purpose and sensitivity was mapped – supporting business understanding and discussion with the executive board

3. Identification of underlying causes, including a historical underinvestment and the associated tech debt and impact on employees

4. Strategic recommendations to address both the security, governance, operational and employee experience shortfalls in the most cost effective manner