Synovum provides governance, risk and compliance (GRC) , technical, and investigatory cyber security services to clients in government, military and multiple industry verticals within the private sector.

Examples of GRC services provided to date include review/creation of policies, implementation of cyber capability, risk assessments, and creation of strategy-level documentation and project management for technical solution implementation.

Technical services provided include vulnerability assessments, penetration testing and TSCM sweeps.

From an investigatory perspective, Synovum can carry out pre-employment social media assessments, c-suite and HNWI online footprint assessments, phishing/vishing/smshing simulation, social engineering audits, and training.

Where appropriate, international security standards and frameworks (NIST, ISO CIS-20 etc.) have been utilised to support any recommendations provided to clients, to ensure continued confidentiality, integrity and availability for information assets.

As such, exposure to multiple vendors has been gained and a number of vendor partnerships have been formed, examples of which are Sophos, Egress, Proofpoint and KnowBe4.

All Synovum consultants hold internationally recognised professional certifications (including CISSP, CISM, CRISC, CEH, ISO 27001 Lead Auditor & Implementer, CTT+, Advanced OSINT, SEPP-Social Engineering Pen-testing Professional) with some holding additional academic certifications (MSc Information Security) accredited by the UK’s GCHQ.

Synovum holds a Gold-level certification to the Cyber Essentials scheme and is a certifying body for both the Cyber Essentials and Cyber Essentials Plus certifications.

Products and services

cybersecurity, risk management, cyber consultancy, policy review, vulnerability assessment, GRC

Industry

Security