Who are we?
With over 20 years experience in Information Security, Privacy, Compliance and Risk Management, Spritzmonkey want to help you secure your business's most precious assets. The information and data that your business uses on a daily basis must be adequately protected against all potential threats; hacking, industrial espionage and accidental loss being examples; and Spritzmonkey have the expertise to achieve your information security goals.
We can work with you to manage all of your information security, cyber security and data protection needs ensuring your risks are minimised to acceptable levels and profits maximised and protected.
At Spritzmonkey we pride ourselves on:
Expert knowledgeable consultants.
Cost-effective services tailored to your business needs.
Building long term relationships with our customers.
Lanswoodpark Business Centre, Broomfield Road, Elmstead Market, Colchester, Essex, CO7 7FD.
ISO27001 and Compliance
ISO27001 Information Security Management System Implementation, Internal Audits; Supplier Audits, ISO27001 Maintenance, Security Awareness Training, Outsourced Information Security Manager, NHS DSP Toolkit, ISO9001.
Privacy and GDPR
GDPR readiness assessments, outsourced DPOs, GDPR compliance projects; assistance with Data Protection Act 1998 and 2018, GDPR and Data Protection Training and Awareness Programmes.
Cyber Security Audits, Security Programme Development, Technical Security Implementation and Support, Virtual CISO, Visual Hacking, Physical Security Assessments, Phishing Simluation.
Security technology including firewalls, antivirus software, SIEM, encryption, VPN, DLP, mobile security, DDoS protection, email and web content security. We are registered partners with such as IBM Security and Symantec.
What we do
In today's digital age, all businesses have a potential source of information that could represent a security risk. According to the 2017 Cyber Security Breaches Survey published by UK government nearly half (46%) of all UK businesses have identified at least one cyber security breach or an attack in the last 12 months.
The most common types of breaches related to staff receiving fraudulent emails (72% of those who identified a breach or attack), followed by viruses and malware (33%), people impersonating the organisation online (27%) and ransomware (17%). Breaches were often linked to human factors, highlighting the importance of staff awareness and vigilance. However, few businesses currently provide staff with cyber security training (20%) or have formal policies in this area (33%). Technical controls are also important, with nine in ten businesses regularly updating their software and malware protections, configuring firewalls or securely backing up their data, but only around two-thirds (69%) having guidance on acceptably strong passwords.
Most breaches are preventable but the survey showed that only 17% of medium and large businesses have successfully implemented all of the recommended 10 Steps to Cyber Security with smaller businesses being less likely to have implemented controls. Have you done all you can to protect your business? Do you have necessary controls in place? Some businesses do not survive the breach. Can you afford to take no action?
One of the most common methods to breach your security is through your staff, either knowingly or unwittingly. They are deliberately targeted through emails, phone calls and even advertising on trusted websites; as the best and easiest way for those wanting to breach your security measures is to get a person to do it for them. We offer security awareness training for your staff to provide them with the ability to spot a potential security threat, avoid it and then report it.
To assure your customers of your security standards Spritzmonkey can help you implement ISO27001, the industry standard in information security. We can also assist you in improving your security measures by undertaking a cyber security audit on your business or provide a part-time virtual CISO to advise your board and manage your information security programmes.
The phrase that everyone is talking about is EU GDPR, the new General Data Protection Regulation. All businesses will need to comply with this new regulation by May 2018 and there are many changes and updates to the current Data Protection Act that will need to be implemented. UK Government has signalled it's intention to enshrine GDPR into UK legislation with the new Data Protection Act 2017. Our consultants can provide advice on all aspects of data protection legislation and compliance to ensure your business has the right processes in place for handling how information is collected, processed, stored, maintained, protected and disposed of. The rights of the individual are protected by a variety of legislation throughout the globe and whether you trade in the UK, Europe or globally you need to have effective policies and processes to protect personnally indentifiable information (PII) that you process. Call us to discuss our EU GDPR readiness programmes, outsourced Data Protection Officers (DPOs) and your other privacy requirements.
Spritzmonkey partner with carefully selected technology vendors in order to offer you the best of breed security technology. Our expert consultants can work with you to assess and provide whichever of these is best for your business and tailor these to the needs of your organisation. If needed we can provide technical engineering assistance to carry out implementation and support services on this technology.
We look forward to becoming your trusted advisor.
Use the form below to contact us regarding your information security enquiry. Please be as detailed as possible.
For job opportunities, please email us your CV. We’re always looking for new and exceptional talent.