Security Capability Evaluation
The DeepSeas Security Capability Evaluation allows DeepSeas Clients to evaluate their current security program.The program provides the Client with a...
Strategic Advisory & Professional Services
Security Advisory
Security Office Hours
The DeepSeas Security Office Hours service partners DeepSeas Clients with a part time Security Advisor who can address Client’s cybersecurity...
Security Advisor
The DeepSeas Security Advisory service partners DeepSeas Clients with a part time strategic security advisor who can relieve the burden...
Virtual Security Advisor
The DeepSeas Virtual Security Advisor service partners DeepSeas Clients with a part time strategic security advisor who can relieve the...
Additional Security Advisor Program Hours
Additional Security Advisor Program Hours are designed to augment an existing Client’s Security Advisory Program (i.e. Security Office Hours, Security...
Security Advisor Project Oversight (Add-on)
Security Advisor Project Oversight Hours are designed to augment an existing Client’s Security Advisory Program (i.e. Security Office Hours, Security...
Security Tools Rationalization
The Security Tools Rationalization Assessment offering by DeepSeas partners with clients to assess the client’s existing security tools portfolio to...
DeepSeas Advisory App
The DeepSeas Advisory App allows Clients to visualize their current security posture as well as assist in their journey of...
Strategic Services
Credential Monitoring
Credential Monitoring provides proactive visibility into user credentials that may have been exposed on the dark web. This services includes...
Dark Web Alerting
DeepSeas' Dark Web Alerting service provides continuous monitoring of an organization's external digital footprint, alerting on emerging threats such as...
Managed Threat Intelligence
DeepSeas' Managed Threat Intelligence service delivers a hosted intelligence platform, continuous access to expert analysts, and curated threat intelligence tailored...
Firewall Assessment
The Firewall Assessment is designed to evaluate and enhance the security, effectiveness, and compliance of a firewall by identifying vulnerabilities,...
Compromise Assessment
Deep Compromise Assessment
DeepSeas’ Compromise Assessment Service seeks to identify evidence of an active or historical security breach in Customer’s IT systems by...
Deeper Compromise Assessment
DeepSeas’ Compromise Assessment Service seeks to identify evidence of an active or historical security breach in Customer’s IT systems by...
Deepest Compromise Assessment
DeepSeas’ Compromise Assessment Service seeks to identify evidence of an active or historical security breach in Customer’s IT systems by...
Security Risk Assessments
HIPAA Risk Assessment
This Risk Assessment is a comprehensive evaluation of your information security program. The output will provide insights into program strengths/weaknesses...
HIPAA Risk Assessment Update
This Risk Assessment Update is a comprehensive evaluation of your information security program. The output will provide insights into program...
NIST 800-171 Risk Assessment
This Risk Assessment is a comprehensive evaluation of your information security program. The output will provide insights into program strengths/weaknesses...
NIST 800-171 Risk Assessment Update
This Risk Assessment Update is a comprehensive evaluation of your information security program. The output will provide insights into program...
NIST 800-53 Risk Assessment
In a world where new threats and vulnerabilities emerge constantly, new regulations and industry best practices are published, developing an...
NIST 800-53 Risk Assessment Update
This Risk Assessment Update is a comprehensive evaluation of your information security program. The output will provide insights into program...
NIST CSF Risk Assessment
This Risk Assessment is a comprehensive evaluation of your information security program. The output will provide insights into your cybersecurity...
NIST CSF Risk Assessment Update
This Risk Assessment Update is a comprehensive evaluation of your information security program. The output will provide insights into program...
Network Security Risk Assessment
This Network Security Risk Assessment will provide a comprehensive evaluation of Client's network-related cybersecurity risks and result in a prioritized...
CIS Controls Risk Assessment
In a world where new threats and vulnerabilities emerge constantly, new regulations and industry best practices are published, developing an...
AI Framework Security Risk Assessment
The Rapid GenAI Security Risk Assessment offering by DeepSeas partners with clients to assess high risk shadow usage of public...
Rapid Cloud Security Posture Assessment
The Rapid Cloud Security Posture Assessment offering by DeepSeas partners with clients to assess their cloud environments and map information...
Compliance Readiness
ISO 27001 – ISMS Implementation
Many businesses make significant investments in IT and information security and place substantial emphasis on protecting confidential or personal information...
ISO 27001 – Gap Assessment
Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of...
ISO 27001 – Guided Documentation Development
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define...
ISO 27001 – Asset Gathering & Risk Assessment
In a world where new threats and vulnerabilities emerge constantly, new regulations and industry best practices are published, developing an...
ISO 27001 – Internal Audit
Many businesses have a significant amount of investment in IT and information security and place substantial emphasis on protecting sensitive...
ISO 27001 – External Audit Guide
An Audit Guide is a DeepSeas consultant, who participates in audits to help the Client defend against findings where issues...
ISO 27001 – ISMS Continual Improvement
This Statement of Work identifies the objectives, scope, methodology, deliverables, client requirements, and assumptions for all work to be completed...
SOC2 – ISMS Implementation
Many businesses have a significant amount of investment in IT and information security and place substantial emphasis on protecting sensitive...
SOC2 – Gap Assessment
Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of...
SOC2 – Guided Documentation Development
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define...
SOC2 – Internal Audit
Many businesses have a significant amount of investment in IT and information security and place substantial emphasis on protecting sensitive...
SOC2 – 1 External Audit Guide
An Audit Guide is a DeepSeas consultant, who participates in audits to help the Client defend against findings where issues...
CMMC Gap Assessment
Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of...
NIST System Security Plan
A System Security Plan is designed to help organizations align business risk to security objectives, technical security controls, and architecture....
Payment Card Industry (PCI) Assessment
Credit card processing has become a vital function for most businesses. As technology advances and becomes more sophisticated, so too...
Curated Risk Assessment
Risk Assessment is a comprehensive evaluation of your information security program. The output will provide insights into your cybersecurity program's...
Security Program Development
Event Day Security Awareness Training
This Awareness initiative will provide some or all components of a comprehensive, custom security awareness program. More importantly it will...
Instructor Led Security Awareness Training
This Awareness initiative will provide some or all components of a comprehensive, custom security awareness program. More importantly it will...
Security Awareness and Training Program
The majority of cyber-attacks and attack-chains start with, or include, a component that exploits the 'human element'. A sound Security...
Security Awareness Phishing Campaign
Security Awareness is a critical component of an information security program in that the organization is ensuring personnel are aware...
Data Classification and Asset Inventory (General)
Creating and maintaining an accurate inventory of data assets is a critical step in risk management and enables the implementation...
Data Classification and Asset Inventory (Healthcare)
Creating and maintaining an accurate inventory of data assets is a critical step in risk management and enables the implementation...
Data Classification and Asset Inventory (Higher Education)
Creating and maintaining an accurate inventory of data assets is a critical step in risk management and enables the implementation...
Data Classification and Asset Inventory (Technology)
Creating and maintaining an accurate inventory of data assets is a critical step in risk management and enables the implementation...
Policy Development (General)
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define expected...
Policy Development (Healthcare)
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define expected...
Policy Development (Higher Education)
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define expected...
Policy Development (Technology)
Policies and supporting documentation are the primary governance structure for a cybersecurity program. Security policies protect people and information, define expected...
Privacy Assessment
Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of...
Privacy Regulatory Relevance & Program Design
Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of...
Virtual Data Protection Officer (vDPO)
vDPOs are data privacy leaders who oversee data protection strategies and program implementation to support compliance with privacy regulations and...
Vendor Risk Assessment
Today's business climate is complex. The cloud, Software-as-a-Service (SaaS), mobility, outsourcing and the ever-expanding ecosystem of third-party service providers has...
Vendor Risk Management
Today's business climate is complex. The cloud, Software-as-a-Service (SaaS), mobility, outsourcing and the ever expanding ecosystem of third-party service providers...
Security Event Management Plan
Security Event Management is the framework used to manage security event logs, including the tools, processes, and resources that an...
KnowBe4 Subscription(s)
The KnowBe4 Security Awareness Training platform provides critical components of a comprehensive security awareness program. Most importantly, it will provide...
IR Readiness
Incident Response Planning
The DeepSeas Incident Response Planning Service ("IR Plan") includes i) a comprehensive review of the Customer's existing incident response roles,...
Incident Response Tabletop Testing
The DeepSeas Incident Response Testing Service ("IR Test") employs realistic incident scenarios to i) evaluate the Client's technical ability to...
Incident Response Execution
The DeepSeas IR Forward-Deployed Resource ("IR Execute") is a dedicated incident response (IR) subject matter expert responsible for coordinating remediation...
IR – Proactive Retainer Renewal
DeepSeas' Incident Response Proactive Retainer enables the Client to leverage DeepSeas Security Incident Response Team ("SIRT") in a proactive and...
IR Retainer – 4-Hour SLA
DeepSeas shall contract with Redpoint Cybersecurity, LLC (“Redpoint Cyber”) to provide professional services (“Services”) as set forth below. The Services will...
IR Retainer – 24-Hour SLA
DeepSeas shall contract with Redpoint Cybersecurity, LLC (“Redpoint Cyber”) to provide professional services (“Services”) as set forth below. The Services will...
IR Retainer – 90-Minute SLA
DeepSeas shall contract with Redpoint Cybersecurity, LLC (“Redpoint Cyber”) to provide professional services (“Services”) as set forth below. The Services will...
Service Catalog