Cyber GRC Services

Practical, affordable cyber security & compliance support—built for growing businesses.

At Fortitude Cyber, we help small and medium-sized businesses protect their data, meet compliance requirements, and build stronger trust with customers. With years of hands-on experience in Governance, Risk & Compliance (GRC) for UK organisations, we deliver simple, effective solutions without the jargon or enterprise-level price tags.

Whether you need help achieving Cyber Essentials, maintaining ongoing compliance, or preparing for ISO 27001 / SOC 2 certification, we provide flexible packages that scale with your business.

Why Choose Fortitude Cyber?

  • Affordable packages designed specifically for SMB budgets
  • Fast delivery and practical guidance
  • Flexible, monthly, no-nonsense support
  • Direct access to an experienced Information Security Manager
  • Clear pathways from basic compliance to full certification

Our Service Packages

🟩 Tier 1: Compliance Starter Pack

For SMBs beginning their cyber compliance journey or needing fast, credible security uplift.

What’s included:

  • Cyber Essentials / Cyber Essentials Plus readiness review
  • Basic risk assessment tailored to your business
  • Essential policy pack:
    • Acceptable Use Policy (AUP)
    • Password & Access Control Policy
    • Incident Response Policy
    • Backup Policy
    • Patch & Vulnerability Management Policy
    • Remote Working Policy
  • 1-hour security awareness training session
  • Recommendations for next steps & improvement plan

Delivery: 1–2 weeks
Price: £695 (one-off)

Ideal for companies needing immediate compliance uplift or preparation for customer/vendor due diligence.

🟦 Tier 2: Fractional GRC Support (Monthly Retainer)

Your outsourced Cyber GRC function—without the cost of a full-time hire.

Perfect for growing SMBs who need ongoing compliance management, security oversight, or help preparing for audits.

What’s included every month:

  • Ongoing compliance oversight and guidance
  • Risk register management (updates, actions, scoring, reporting)
  • Supplier due diligence support
  • Support with customer security questionnaires
  • Audit preparation (Cyber Essentials, ISO 27001 or client-led audits)
  • Quarterly policy reviews & updates
  • Monthly security check-in call
  • Email support for your whole business

Pricing:

  • Basic Plan – £395/month (light support, great for micro businesses)
  • Standard Plan – £695/month (most popular)
  • Advanced Plan – £995/month (for businesses with audit-heavy workloads)

Cancel anytime with 30 days’ notice.

🟥 Tier 3: Compliance Project

End-to-end support to prepare your organisation for certification.
Designed for SMBs that want to win larger clients, enter regulated markets, or level-up their security posture.

What’s included:

  • Full gap analysis against Cyber Essentials (and CE+), ISO 27001:2022, ISO 42001 (the AI standard)…
  • Documentation pack
  • Risk assessments, risk treatment plans, SoA and supporting processes
  • Policy suite creation or uplift
  • Internal audit
  • Support through certification audit
  • Optional ongoing management under Tier 2

Delivery: 8–16 weeks depending on scope

Pricing:

  • Project: £4,995 – £8,995
    (depending on size & complexity)

Add-On Services

✔ Cyber Essentials / CE+ Fast-Track Package

Includes a readiness review, policy updates, evidence preparation, and direct support during assessment.
Price: £495 (standard)
£795 (CE+ readiness)

✔ Security Awareness Training

Live, remote training sessions tailored to your staff and environment.
Price: £195 per session (unlimited attendees)

✔ Third-Party/Supplier Review Pack

One-off deep dive into your vendor ecosystem.
Price: £395

✔ Incident Response Plan Creation

End-to-end development of a practical, actionable IR plan.
Price: £350

Not Sure Where to Start?

Most SMBs begin with Tier 1 or a Cyber Essentials Readiness Review, then move into Fractional GRC Support as their business grows.

Get Started Today

You don’t need to wait months to improve your cyber posture.
You don’t need enterprise budgets or a full-time security team.

With Fortitude Cyber, you can strengthen your compliance, reduce risk, and impress customers—starting this week.

👉 Email: hello@fortitudecyber.co.uk
👉 Request a free consultation today

Scroll to Top