Cybersecurity Assessments & Monitoring
Vulnerability assessment, penetration testing, and continuous monitoring services scoped to ITSG-33 control families. Plain-English findings with remediation cost estimates a CFO can action.
- UNSPSC
- 81111801
- Computer Services — Information Security Services
- GSIN
- D399B
- ADP Services — IT Security Services
- Procurement type
- Services
Scope
- External and internal vulnerability assessments with CVSS-scored findings
- Application penetration testing for in-house and procured systems
- Cloud configuration review against CIS and PBMM baselines
- Managed detection alert triage with monthly executive reporting
Deliverables
- Findings report with prioritized remediation plan and effort estimates
- Re-test pass after remediation
- Executive summary suitable for steering committees and audit responses
Fixed scope, milestone-based, no surprise change orders.
Every service line is delivered against a written SOW with named milestones, acceptance criteria, and a fixed price for the agreed scope. Change requests are scoped and priced in writing before any work proceeds.
Hand-off documentation is included in every engagement: architecture diagrams, runbooks, named contacts, and where applicable source-code escrow. We treat hand-off as a deliverable, not an afterthought.
Often scoped together with Cybersecurity
Cloud Migration & Managed Cloud
Lift-and-shift, re-platform, or greenfield deployment to Azure, AWS, or sovereign Canadian cloud — with managed support afterwards. We are pragmatic about hybrid; not every workload belongs in the cloud.
Secure Communications & Low-Voltage Integration
Software-led integration of secure communications equipment and low-voltage systems on facilities and platforms — through licensed Canadian electrical and integration partners.