Cybersecurity GAP Analysis

Cybersecurity Gap Analysis

The first steps

The CCS Cybersecurity Gap Analysis is designed to achieve three main objectives:

  1. Determine the top cybersecurity risks to your business so you can fix them at the earliest opportunity – immediate risk reduction;
  2. Determine the major projects that should begin at the earliest opportunity in order to fix the top risks permanently – fix, don’t patch; and
  3. Lay the groundwork for development of a sustainable and appropriate security program for your business – keep it fixed.

This is what security is really all about. Find the top risks, fix them permanently, move on to the next one.

Note: Optionally, CCS can arrange for internal and external penetration tests in order to provide a more complete picture of the real-world vulnerabilities.

Our Methodology

CCS utilises a proprietary assessment methodology based on both the ISO/IEC 27001:2013 – Information Security Management Systems Standard and the NIST Cybersecurity Framework v1.1 for coverage of the most widely used and accepted industry best practices globally.  The assessment measures your security capability and maturity for up to 20 Key Domains, depending on your priorities, current posture, and how deep you want to go.



Assessment Plan


Gap Analysis Pre-requisites



Kick-off / High Level Risk Assessment






Presentation of Findings to Leadership