CSPA in practice — legal
A law firm, looking to access a broader range of tender opportunities, used the CSPA to satisfy industry regulators as to the strength of their cyber security provision.
Key individuals from the firm joined dedicated sessions to discuss specific areas of cyber security and the extent to which controls had been implemented. CRMG delivered a gap assessment identifying controls not in place, and threats that were not being mitigated, providing both a compliance and risk-based view of their cyber security at the firm.
The result — the firm received clear recommendations to improve their security control implementation in line with industry requirements, and a roadmap outlining specific steps to take over the following 12-18 months.
Find out more