Know where you stand, before you commit.
A structured assessment of your current security posture against SMB1001, ISO 27001 or your specific requirements: with a clear, actionable roadmap out the other side.
Assessment types.
Every assessment is led by a qualified security practitioner and delivered with a written report and a remediation roadmap.
A structured gap analysis across all five SMB1001 tiers. We map where you are today and build a prioritised roadmap to your target tier.
Assessment against all 93 ISO 27001:2022 controls. Includes a draft Statement of Applicability scoped to your organisation.
External and internal penetration testing by qualified practitioners. Required for SMB1001 Diamond certification.
Authenticated and unauthenticated vulnerability scanning across your network, endpoints and internet-facing assets.
The starting point for most clients.
Most CyberGrape engagements start with a security assessment. It tells you where the gaps are, how critical they are, and what to fix first. Without it, you are guessing.
Assessment findings are loaded directly into the CyberGrape Platform, so you can track your remediation progress in real time and use the evidence in your certification submission.
The foundation of your certification journey.
A readiness assessment is the first step in any SMB1001 certification engagement. It maps your current controls to the target tier, identifies gaps and produces a remediation plan that feeds directly into the certification programme.
Learn about SMB1001 certification →Common questions.
Start with the facts.
Book a free consultation and we will talk you through the right assessment for your business and your certification goals.

