Compliance & Regulations
Risk Management & Incident Response — 14 Fixed-Price Services
Risk assessments, incident response plans, business continuity, vulnerability scanning, SIEM setup. Be prepared before an attack — and respond correctly when it happens.
Risk Assessment
View allRisk registers, treatment plans, information security policies.
Incident Response
View allResponse plans, reporting workflows, 24-hour NIS2 alerts.
Business Continuity
View allBCP/DRP, disaster recovery, digital resilience testing.
Vulnerability Management
View allScanning, penetration testing, phishing simulation.
Security Monitoring (SIEM)
View allCentralized logs, anomaly detection, alerting dashboards.
Risk Management & Incident Response — Price List
| Service | Price | Action |
|---|---|---|
NIS2 Risk Analysis & Information Security Policy | $490 | Details → |
ISO 27001 Risk Assessment & Treatment Plan | $490 | Details → |
DORA DORA ICT Risk Assessment | $590 | Details → |
NIS2 Incident Response Plan | $390 | Details → |
NIS2 Incident Reporting Workflow Automation | $349 | Details → |
DORA ICT Incident Reporting Workflow | $349 | Details → |
NIS2 Business Continuity & Disaster Recovery Plan | $490 | Details → |
DORA Digital Resilience Testing Setup | $490 | Details → |
NIS2 Vulnerability Management Program Setup | $390 | Details → |
Multi-Framework Penetration Test — Web Application | $590 | Details → |
Multi-Framework Security Awareness Phishing Simulation | $249 | Details → |
NIS2 Security Monitoring Setup (SIEM/SOC) | $590 | Details → |
SOC 2 Continuous Monitoring & Alerting Setup | $390 | Details → |
Not sure which framework applies?
- • EU personal data → GDPR (any company with EU customers)
- • Critical infrastructure → NIS2 (50+ employees or €10M+ revenue in 18 sectors)
- • Enterprise B2B sales → ISO 27001 or SOC 2 (clients ask for proof)
- • Payment processing → PCI DSS (credit card data handling)
- • Financial services → DORA (banks, insurance, fintech)
Frequently Asked Questions
What is a risk assessment and how often should we do one?+
A risk assessment identifies threats to your information assets, evaluates likelihood and impact, and defines treatment plans. ISO 27001, NIS2, and DORA all require at least annual assessments.
What happens if we have a security incident without an incident response plan?+
Under NIS2, you must report significant incidents within 24 hours. Without a plan, you'll miss deadlines, make mistakes, and face larger fines. Our Incident Response Plan ($349) ensures you're prepared.
What is BCP/DRP and why do I need it?+
Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP) ensure your company can operate during and after a crisis. Required by NIS2 Article 21(2)(c) and DORA Article 11.
Do we need vulnerability scanning?+
Yes, if you're under NIS2, ISO 27001, SOC 2, or PCI DSS. Our Vulnerability Scanning Setup ($390) configures automated weekly scans with severity-based alerting and remediation tracking.
What is SIEM and when do I need it?+
Security Information and Event Management (SIEM) centralizes logs and detects anomalies. Required for SOC 2 CC7.2 and NIS2 monitoring requirements. Essential once you have 50+ employees or handle sensitive data.
$5
Not Sure Where to Start?
Our IT Health Check finds every compliance gap in your infrastructure. 1 business day. You get a prioritized list of what to fix.
Need help choosing?
Start with a Multi-Framework Assessment ($690) to get a complete compliance roadmap.