Reduce your supplier due diligence and risk assessment backlog with our MyRisk™ fixed price services.

MYRISK® RISK AND SECURITY ASSESSMENT – HIGH RISK

Review service information and technical information provided by the customer, determine the supplier / service provider’s inherent risk, including level of risk associated with key assets of the customer and service provider, assess supplier contract risk, assess service quality (functionality, reliability, usability, efficiency) using ISO9126, conduct detailed cyber security assessment using NIST cyber security framework (CSF) and provide recommendations. Assessment based on our standard supplier questionnaire responded to by the supplier / service provider, any relevant independent audit reports (such as SOC 2 type II) provided by the customer, and any publicly available information related to the supplier or their cyber security controls.

$4200 plus GST (single service) / $5100 (multiple infrastructure services)

Where the service is a payment service only, and PCI-DSS Attestation of Compliance is available, and can be relied on fully for cyber security controls: $3600 plus GST

MYRISK® RISK AND CYBER SECURITY ASSESSMENT – MEDIUM RISK

Review service information provided by the customer, determine the supplier / service provider’s inherent risk, assess supplier contract risk, assess service resilience using ISO9126, conduct cyber security assessment using key controls from NIST cyber security framework (CSF) and provide recommendations. Assessment based on our standard supplier questionnaire responded to by the supplier / service provider, and any publicly available information related to the supplier or their cyber security controls.

$2400 plus GST

CONTRACT REVIEW

Review relevant service agreement (such as managed services agreement (MSA), software licence agreement, end user licencing agreement) provided by the customer, to ensure cyber security risks identified in our assessment as well as any other cyber security or privacy related liability issues are addressed. Provide marked-up service agreement to customer for further review by their legal counsel.

Per agreement – $600 plus GST

SUPPLIER ENGAGEMENT

Generally, our services rely on the customer to engage with their suppliers / service providers to obtain any information required in the course of our risk and security assessment. If the customer requires us to engage directly with suppliers to obtain questionnaires, independent audit reports, or follow-up on requests for information these services are provided at a cost of $150 per hour (plus GST).