Our specialist cyber advisory group provides an impartial service, focusing solely on enabling large and mid-market enterprises to navigate complex cyber security issues and meet regulatory requirements. Using a proven methodology and supported by national security-level advisors, our experts assess a client’s cyber maturity, and provide guidance to help them identify, understand and manage their security risks.



The crucial first step in managing cyber risk is to understand it. An ITC Cyber Assessment will provide you with this understanding. We assess every aspect of your organisation: technology; culture; governance; and people, to give you a clear,comprehensive and independent understanding of the specific levels of risk you face. This puts you in the optimum position to address and lower your cyber risk.

Why you might need an assessment

To manage your organisation’s cyber security and ensure the safety of your most valuable data assets. You need to understand the levels of cyber risk you are carrying, to know where you are most vulnerable and to determine how best to prioritise your security budget.

Key benefits

An ITC cyber assessment covers:

  • Governance (strategy, accountability, board oversight)
  • Identification (asset inventory, third-party risk, user access)
  • Situational awareness (threat intelligence, collaboration)
  • Protection (patch management)
  • Detection (continuous monitoring, incident response)

What we deliver

Following the assessment, we deliver a report that highlights the vulnerabilities you carry in each area of your organisation. This will include a management-level executive summary of the identified issues and their potential business impact, together with a detailed technical appraisal.

We will also ensure you consider any relevant regulatory standards.

Why ITC Cyber Advisors

Our advisory team includes former members of British intelligence and has access to some of the world’s leading security experts. Using a proven methodology to show organisations their current cyber maturity, we deliver clear, outcome-based recommendations that assist organisations in making the right cyber investment choices.



Regular penetration (or pen) testing is an important step in hardening an organisation’s cyber security posture. Under controlled conditions it will highlight vulnerabilities and enable them to be fixed before they are exploited. By identifying vulnerabilities, predicting their likelihood and quantifying the possible impact, pen testing enables proactive management and the implementation of corrective measures which can be used to shape an organisation’s cyber security strategy.

Why you might need this service

In an age of threat actors with advancing sophistication a growing number of breaches are achieved or leveraged using application vulnerabilities. Regular pen testing is therefore a crucial aspect of any robust cyber security solution. It will enable vulnerabilities to be identified before they can be exploited. Pen testing also provides the initial vulnerability assessment that is an essential part of any cyber security strategy.

Key benefits

Following the pen test we deliver a report highlighting vulnerability and suggesting the remediation steps necessary to mitigate specific vulnerabilities. The report will include an executive summary of the identified concerns and their potential business impact.

An ITC pen test will help you to:

  • Uncover critical vulnerabilities in your environment
  • Prioritise and tackle risks based on their exploitability and impact
  • Meet compliance with industry standards and regulations such as ISO and PCI-DSS
  • Protect your brand and market reputation
  • Provide assurances to information security and senior management

Why ITC Advisors

Our pen tests are delivered by professionals with a history of handling complex, large-scale vulnerability assessments across a wide range of clients and industry sectors. The advisory team uses a proven ITC methodology to assist organisations with achieving cyber security maturity.



Phishing attacks are a daily occurrence. Recent stats indicate that over 90% of cyber attacks start with a phishing email. Phishing is becoming more widespread and, as it develops in sophistication and effectiveness, so its impact is growing year on year. To help organisations prepare for and counter such attacks, ITC delivers simulated phishing campaigns that target the organisation’s employees. These simulations are also important to help raise awareness around these types of attacks.

Why you might need this service

It is crucial that understand the exposure your organisation has to phishing, spear phishing, or even whaling attempts. Knowing what these types of attacks look like is the first step in ensuring the safety of your network and, ultimately, the reputation of your business. In raising awareness of these threats, this service strengthens a key part of your cyber security – your people.

Key benefits

Using statistics from a simulated phishing campaign we are able to produce an in-depth executive summary identifying areas within an organisation that would benefit from increased or additional cyber awareness training.

An ITC pen test will help you to:

  • Sophisticated and safe simulated phishing campaigns run on a quarterly basis
  • Increased awareness of phishing attacks within an organisation
  • An understanding of the responsive actions employees should take

Why ITC Advisors

The advisory team uses a proven ITC methodology to help organisations achieve security maturity and ensures their employees are aware of cyber risks. Our credible and confidential reporting enables better, fact-based, decision-making which helps prevent financial loss and reputational damage.



This is a non-invasive review that assesses an organisation’s current cyber security (controls and practices), IT architecture and protection status. It identifies high-risk areas, red flags and cyber vulnerabilities to deliver a clear and easy to understand security ratings report.

Why you might need this service

It’s critical you have a qualified view of the cyber risks your organisation is exposed to. Whether it’s a point-in-time view of your own cyber security maturity, that of a current third-party supplier, vendor or partner, or that of a business you are considering investing in, trading with or acquiring, this service will provide you with the information needed to make informed decisions.

Key benefits

We provide a straightforward report that rates the cyber security of your business or that of a third party, giving comparisons with industry peers.

The ratings report provides data on:

  • Compromised systems (evidence of any communication with known malware-associated IP addresses)
  • Diligence (the configuration of public facing services, such as emails and encryption)
  • User behaviour (potentially insecure practices such as the use of peer-to-peer file sharing)

Why ITC Advisors

We partner with leading private equity and international law firms to promote cyber due diligence. Our credible and confidential reporting enables better, fact-based, decisionmaking which helps prevent financial loss and reputational damage.



Threat intelligence is an organised and refined informational service that continuously monitors the threat horizon, and provides advice on any potential or current cyber-related attacks that could threaten an organisation.

Why you might need this service

Cyber attacks are a daily occurrence, so an effective defence barrier is essential. And staying ahead of the so-called threat actors is critical. Gaining knowledge of an attack before it happens means you can be prepared – ready to prevent any form of data loss or loss of service, and confident your organisation’s key data assets (its Crown Jewels) are safe.

Key benefits

ITC’s advanced threat intelligence solution provides organisations with regular cyber security updates relevant to their sector, and with professional advice on how to prevent attacks from specific threat actors.

This service identifies potential cyber risks to your organisation, and provides:

  • Expert advice on industry-specific threat actors
  • Incident monitoring specific to your organisation (domain squatting and brand protection)
  • Security for your organisation, both physical and intellectual

Why ITC Advisors

Our advisory team includes former members of the British intelligence services, and has access to some of the World’s leading security experts. Using a proven methodology to ascertain an organisation’s level of cyber maturity, we monitor the world of cyber risk to ensure they are best placed to respond to threats.



This is a fully managed service that helps organisations measure, manage and reduce their exposure to third-party and supply chain-related cyber threats. We provide continuous daily monitoring of third parties, using an industry recognised scoring system to identify where risk is highest and to alert client and third party on the actions needed to improve their cyber security position.

Why you might need this service

It’s estimated that over 60% of breaches are linked to third parties. So, understanding and mitigating this risk is a business imperative. Whether it’s vendors, clients, partners or acquisitions you’re dealing with, continuous visibility of their security performance is critical. Poorly rated third parties carry a significantly higher risk of cyber breach.

Key benefits

Using externally observable data, our analysts can rate all the third parties you interact with.

This service delivers:

  • A stress-free onboarding process
  • 24x7x365 monitoring
  • Industry recognised ratings from expert analysts
  • Risk identification and advice for remediation
  • Peer and industry comparisons

It also frees up time for your valuable internal resources.


From our London-based security operations centre we constantly monitor the world of cyber security, ensuring that all relevant threats are identified, and our customers are given the right advice to reduce risk exposure.

In addition, our cyber experts deliver a comprehensive onboarding process that ensures a complete understanding of your risks and priorities.

Additionally we provide:

  • Strategic advice
  • Nation security-level advice
  • Forensic investigation
  • Compliance consulting
  • Private client security
  • Crisis communication
  • CISO as a service
+44 (0) 20 7517 3900


Contact ITC Secure

If you have a question, request, comment or requirement, please send us an email now and we will get back to you by return