Stratia Consulting specialise in Information Assurance and Risk Management.

We have years of experience in providing information assurance and information risk management services to all kinds of businesses. It does not matter whether you run a small start-up company or a large corporation, we will ensure your assets are protected and maintained efficiently. Our aim is to find the best form of protection for your business and provide you with the means to manage risks effectively in order to minimise financial costs and prevent damage to your reputation.

Cookie Policy

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

Contact Info

Risk Management

Stratia Consulting’s risk management services have been certified by the National Cyber Security Centre (NCSC) as meeting their exacting standards.

Risk Management will be managed as part of our bespoke and tailored CARE Methodology This ensures that information risk management is properly embedded into an organisation and continues to be carried out effectively over time, we will normally recommend some form of Information Security Management System (ISMS).

Options include:

  • Implementation of an Information Security Management System (ISMS) in line with the ISO 27000 series of standards, with independent audit and certification.
  • Implementation of an ISMS in line with ISO 27000 series requirements, but without independent audit and certification.
  • For smaller organisations, a lighter-touch approach in line with the IA for Small and Medium Sized Enterprises (IASME) standard.
  • A bespoke approach based on the specific culture, context and regulatory environment of your organisation.

Information risk management is about far more than the selection of appropriate technical controls.

Whilst appropriate technical controls are important, effective risk management also requires a broad range of other elements to be in place. These include leadership commitment to information security, policies and procedures in place that are adhered to not just written down, effective incident management and business continuity planning, and mechanisms in place to identify existing and emerging weaknesses and gaps (then address them).

Stratia Consulting can assist you at all stages of this journey, from the initial implementation of an ISMS to the fine-tuning of risk management in a mature and well-run ISMS. We will provide expert advice on proportionate and cost-effective ways of mitigating identified risks. As an independent company without ties to any hardware or software vendors, you can be sure that all of our recommendations are product- and vendor-neutral.