CASE STUDY: Cybility's Amply Assuring Assessor™ using NIST CSF for Layer7

Clarity
Capability
Confidence

Lineeart Icon in red of a clipboard with a checklist on it. A magnifying glass is over the the top right-hand corner and through it you can see a couple of cogs.

Case Study

Amply Assuring Assessor™helps Layer7 reduce client's cybersecurity risk using the NIST Cyber Security Framework (NIST CSF)

Our governance, risk, compliance, assurance, and training services are an excellent complement for IT Service Providers and technical security consultancies.

Here's how we performed a gap analysis against the NIST Cybersecurity Framework (NIST CSF) using our Amply Assuring Assessor™ service to support Layer7, an established cybersecurity consultancy, reduce cyber risks for their client. 📉

Frequently Asked Questions

Yes, we offer a 45% discount for this service for charities that are registered in the UK.

This reduces your cybersecurity investment from £175 to just £95 + VAT for one CISO advisor hour.

To claim this discount the charity must be active and currently registered with one of the following:

Charity Commission in England and Wales,
Scottish Charity Regulator in Scotland (OSCR);
Charity Commission for Northern Ireland (CCNI).

What is your cybersecurity persona?

Clarity
Capability
Confidence

What is your cybersecurity persona?

You may be feeling confident that you can spot a phish that is trying to steal your password. Perhaps you are diligent about changing it when you learn about your data leaked in a data breach. However, it could be that your passwords are easy to guess.

If you are doing all the right things... is it strong enough to withstand brute-force attacks?
Brute force attacks are automated attempts to try every combination of every letter, number and punctuation symbol until a password is found.

Take this quiz and find out!

Before starting, think of one specific password you use.

Now, write it down here: ________

(Just kidding, never share your password!)

We have 2 options for this quiz, which one will you choose?

"The path of the Jedi" or "What is a Jedi?"

May the force be with you!

The path of the Jedi...

What is a jedi?

REMEMBER: It is estimated that if your password has 8 characters and includes lowercase and uppercase characters, numbers and special symbols, it would take less than 5 minutes to be cracked in a brute force attack.

If you use a 16-character password with upper and lowercase letters, the time increases to approximately 46 million years!

Even simpler passwords with a higher character count are less vulnerable to cracking in a short period of time.

If you want to have a play: https://www.security.org/how-secure-is-my-password/
(Don’t put your actual password in any password checker)

Want to go a step further?

Get your security score: https://www.security.org/security-score/
Create your free cyber action plan: https://www.ncsc.gov.uk/cyberaware/actionplan

Tiem if takes a hacker to brute force your password in 2023 by HIVE Systems

Your information

📧 We promise we won't spam you. 💂🏾‍♂️ We promise we will protect your information.

We will only use your information for the following purposes:

email you content that you have requested from us;
with your consent, occasionally email you with targeted information regarding our service offerings and/or events;
invite your views on cybersecurity in your industry sector;
continually honour any opt-out request you submit in the future;
comply with our legal and/or regulatory obligations.

Further information about how we use and protect your information in in our privacy policy.

Access the Cybility's Christmas Countdown (Advent(ure) Calendar)

Clarity
Capability
Confidence

Cybersecurity Christmas Countdown!

Embark on a captivating journey this festive season with our unique Cybility Cybersecurity Christmas Countdown!

Each day, from 1st to 24th December, unlock a new door to discover an engaging, beautifully illustrated scene that combines the joy of the holidays with the vital world of cybersecurity.

From the whimsical 'Phisherman's Foe' to the intriguing 'Puzzle of Passwords', and the imposing 'Fortress Fortification', each image is not just a visual treat; it's also a gateway to understanding crucial cybersecurity concepts.

This calendar is more than a daily delight; it's an educational experience that enhances your digital safety knowledge in a fun and festive way. Make sure to visit our webpage every day for your dose of holiday cheer and cybersecurity wisdom, and together, let's stay safe and informed in the digital world! 🎄💻🔒

🏆 For those of you that would like a little something for your Christmas stockings, check out Santa's sack and add yourself to the list 🎫

For those of you that enjoy jigsaw puzzles, you'll love the latest addition to our online store!

If you like it, let us know, and please share 🎁

Like it? Share it!

The Cybersecurity Conductor’s Companion™ from Cybility

Clarity
Capability
Confidence

The Cybersecurity Conductor’s Companion™

Cybility's Cybersecurity Conductor’s Companion™ is our unique methodology that provides a structured guide walking leaders through the steps they can take to make their organisation more cyber resilient.

It is made up of three major elements.

Cybersecurity conductor icon on a dark blue circle

Conductor

The Conductor is the senior leader in charge of cybersecurity for the organisation, e.g. CISO, CTO, CIO, Head of IT, Director of
Information Security, and so on.

Orchestra

The Orchestra represents two aspects.
First, the six staging pillars form the stage for cybersecurity resilience, each with a specific focus; and secondly, the different departments that will need to collaborate harmoniously across the organisation.

Rehearsals

'The Pragmatic Protection Protocol' is a repeatable process comprised of the 6As.

These are applied to each of the staging pillars in turn, ensuring a comprehensive approach to cybersecurity resilience.

Terms and Conditions

This page includes hyperlinks to the terms and conditions for:

Use of our website
Entries into competitions, giveaways, and prize draws
- Cybility Savvy Book Giveaway Episode 22: Organisation Change
Purchase of products and services via our online store
Purchase of our services on our standard terms (superseded by any terms agreed in a Master Services Agreement (MSA))
Privacy Notice and Cookies Policy

If you have any queries regarding our terms, or wish to negotiate a Master Services Agreement (MSA), please click on 'Get in Touch' in the bottom right-hand corner, click on 'Ask a question about our services' and provide your contact details.

Mentoring Options

Clarity
Capability
Confidence

Mentoring Services

Organisations

Have staff that need specialist support and you don't have the expertise in-house? CybilityXP Boost is our mentoring program for organisations that want to develop their specialist cybersecurity staff to reduce cybersecurity risk.

I represent an organisation, tell me more!

Individuals

Whether starting out in your cybersecurity career or moving up the ladder, our proven mentoring services for indivduals can support you in achieving your goals. Free and paid options available.

I'm a self-starter, how can you help me?

Cybility's Cybersecurity Ring of Resources

Clarity
Capability
Confidence

Cybility's Cybersecurity
Ring of Resources

We are frequently asked if there are any free resources we recommend for charities which is why we created 'Cybility's Cybersecurity Ring of Resources - Charities Edition'.

To make it easier to see when you might use the different tools, we built it around one of the industry standard frameworks (the NIST Cyber Security Framework) functions of Identify, Protect, Detect, Respond and Recover.

Get your free copy

Contact Us

If you'd like to find out more about our services and how we may be able to support your organisation in it's cybersecurity journey, go ahead and hit the button below to book your free call now.

Book a free call

We're on Social Media

Come and engage with us on any of the following social media channels.

Cybility Consulting Ltd t/a Cybility is registered as a Private Limited Company in England & Wales under company number 13351214
Registered Office: 27 Old Gloucester Street, London, England, WC1N 3AX.

Terms and Conditions

Meet Ana

Clarity
Capability
Confidence

Meet ANA

Ana Garner is the Learning and Development Consultant at Cybility.

She has vast experience in designing and delivering learning experiences in diverse themes and formats, including online, blended and face-to-face.

Ana is Certified in Cybersecurity (CC) by ISC2 and in Information Security Management by BSC.

She has a PhD in Creative Media and 2 Masters degrees in Technological Education.

She has been working in education since 2009 and has 10 years of experience as a University lecturer in Brazil and Hong Kong.

Having lived in 6 countries and visited more than 50, she has considerable experience in working with people from different abilities, cultures and backgrounds.

She is passionate about making a difference through the transformative power of education and volunteered for many years in social projects in Brazil.

As a board gamer, Ana is particularly happy to use gamification and playfulness to make cybersecurity awareness and training more engaging and effective.

Why us?

Clarity
Capability
Confidence

Our Mission

Our mission is to help to help society by increasing the resilience of organisations to information and cybersecurity threats.
We improve leaders' 'Cybility' by providing clarity, building capability, and cultivating confidence,
allowing them to focus on delivering their organisation's mission.

Our Values

Our values shape and guide everything we do at Cybility.

Inclusivity

We promote inclusiveness and diversity in the cybersecurity industry.

We create a safe space for people to share their lived experience; we provide candid support and encouragement.

Inquiry

We're curious by nature; we observe, question, learn, and share.

We consider different perspectives taking the time to listen, probe, analyse, adjust, and act.

Integrity

Our integrity, honesty, and authenticity are important to us in all we do.

Our ethical stance is such that we understand what seems 'right' in a situation can look different to different people.

Imagination

We bring a playful spirit to our work, embracing fun and creativity to solve problems and innovate.

We encourage experimentation and new ideas, and we celebrate our successes, big and small.

Investment

We invest in our clients; we care about their success and provide support in good times and bad.

We invest in our people; supporting their professional growth to deal with an ever-changing environment.

Why choose Cybility to meet your needs?

Our Experience: Our team offers over 20 years of IT experience, 12 years of cybersecurity governance experience, and 14 years of adult education experience. This combination of complementary knowledge and skills enables us to provide effective cybersecurity services as well as to design and implement successful training, education, and awareness campaigns for your organisation.
Holistic Approach: Our comprehensive approach covers not only the technical side of cybersecurity; we also focus on creating a strong security culture by empowering your staff to become proactive defenders against cyber threats.
Tailored Solutions: We understand that every organisation is unique. With our client-centric approach, we craft bespoke cybersecurity solutions that align with your specific needs and goals.

Engaging Training: We believe in the power of gamification and playfulness. We use these engaging techniques for training, awareness campaigns and to foster a security culture, in order to improve knowledge retention and behavioural change.
Championing Equity, Diversity, and Inclusion: When you choose Cybility, you're not just investing in cybersecurity services – you're truly supporting diversity and inclusion.
Cybility is founded by a black woman and our team is comprised of individuals from diverse international backgrounds, fostering a dynamic and inclusive environment.

Speaker

Clarity
Capability
Confidence

speaker engagements

Thank you for your interest in inviting Michala to speak at your upcoming event.

Main Talks

How Mentoring Gets the Queue of Cybersecurity Talent Moving to Reduce Your Organisations Risk (opens in new window)
Target Audiences: Business leaders, CIOs, CTOs, IT managers, and anyone else with management responsibility for cybersecurity
A Tale of Two Keyboards - my journey into cybersecurity(opens in new window) - includes a discount on a copy of the ebook
Target Audiences: School pupils, university students, and career changers

Yes, I'd like to enquire about booking Michala for an event

Conference
Speaker

Roundtable
Moderator

Guest
Lecturer

Testimonials

We had the privilege of having Michala provide 2 guest lectures to our Computing students (Computer Science end Cyber Security) in 2021.
Michala's enthusiasm for the subject really shone through and the feedback from both sessions was glowing. Michala was able to relay information to students in a very approachable and interactive manner.
She provided them with a take-home activity which was pertinent to the topic in each lecture and provided constructive feedback on all submissions.
She was able to offer one-to-one mentoring sessions to those students who provided comparatively excellent submissions. The feedback from these sessions were very positive with one student stating how much they appreciated the suggestions for
their professional development.
We are looking forward to having Michala present another lecture in the near future and would highly recommend her services.
Nkaepe Olaniyi PhD SFHEA SMIEEE, Head of Computing, University of Essex Online / Kaplan Open Learning

Michala has moderated a number of virtual roundtable sessions for us at Inspired Business Media now and each time we have been delighted with her work.
Michala always takes time to really understand our clients needs and how best she can make the session a success. She's extremely responsive and a pleasure to work with on the lead up as well as the day of the event. Michalas knowledge and expertise are superb, meaning that she is able to really guide conversations are ensure the participants have a great discussion and experience while also providing our clients with the answers they are looking for.
I would highly recommend Michala to anyone for any speaking or hosting engagements that they may have where they need a confident, passionate and knowledgeable voice. Thank you Michala!
Lauren Greenaway, Senior Production Executive, Global CIO/CISO/CMO Events at Inspired Business Media

The Charities Security Forum has been representing information security professionals working in charities end not-for-profits since 2007 end our members are always eager to hear from experienced practitioners.
On our monthly webinar series Michela demonstrated her undoubted expertise delivering a session that was informative, enjoyable, and pitched just right for the CSF membership.
We always say that security is better together and we're thrilled that Michala supports our community with her in depth knowledge of the sector.
Martyn Croft, Co-Founder, Charities Security Forum (CSF), Premier network for information security professionals working in the charity sector

Michala has spoken on quite a few occasions now at Charity Digital from being part of a podcast in conjunction with the National Cyber Security Centre or leading a workshop for us to help smell charities link cyber security into their digital strategy. Each time she has helped explain the fundamentals of cyber security for charities in a way It can be fully absorbed.
Michela was great to work with as a speaker as she is so passionate end enthusiastic about her field and helping the sector thrive. I am looking forward to working with Michala in the future!
Mimi Morill, Event Manager, Charity Digital

This was a brilliant webinar. Thank you very much! - CD

Very helpful - thank you!!!! - SC

Really helpful. Can we do more like this? - JP

Thank you, it shows how much I need to do! Yes please for more sessions 🙂 - GF
Selection from December 2021 Charity Digital webinar

Yes, I'd like to enquire about booking Michala for an event

Past Events

Watch / listen to a selection of past events that are publicly available.

Third Sector & NCSC: Cyber security for charities part 4: What does a good incident response plan look like? (2022)

Third Sector & NCSC: Cyber security for charities: How to keep your charity cyber safe (July 2022)

Live discussion: How to keep your charity cyber safe | Third Sector

Charity Digital UK: Back to basics: cyber security for smaller charities (December 2021)

South East Cyber Resilience Centre (SECRC): Cyber Inside Out Podcast: Episode 4 (Charities and Third Sector Organisations) (September 2021)

Charities Security Forum (CSF): First Friday Forum - Keep It Pragmatic (September 2021)

TEISS Talk: 3rd party risk assessments: Cyber regulation implications for supply chain security (July 2021)

Podcast: Charity Digital UK: Why don't charities care about cyber security? (February 2021)

CREST videos: Information security in the healthcare charity sector | Interview with Michala Liavaag

The Charity Digital Podcast: Goodbye 2020, hello 2021 (December 2020)

Podcast: Charity Digital UK: Cyber-security state of the nation (February 2020)

Yes, I'd like to enquire about booking Michala for an event

Frequently Asked Questions

Yes. You can read example synopsis on Michala's Innovation Women Speaker Profile (scroll towards the bottom).

The more notice the better; however, I appreciate that life happens, and speakers may drop out at the last minute.

We evaluate engagements on a case-by-case basis. Michala offers pro bono speaking engagements in her work as a STEM Ambassador and for causes that she cares about.

She prioritises requests that align with her interests and have a budget. She is also open to other forms of compensation, such as an article to your mailing list, giving a presentation to senior management, or free exhibition booth, and so on.

Michala's speaker rate starts from £1,500 ex VAT plus reimbursement of any expenses incurred.

Please contact us to discuss your specific needs.

Yes, you can book directly.
Alternatively, Michala is an Innovation Woman speaker and can be booked via their platform.

Throughout the COVID19 pandemic Michala only offered her speaking services remotely.

As of April 2023, she is once again open to speaking at on-site events; this is subject to speaker fees and travel expenses being reimbursed.

Your information

📧 We promise we won't spam you.

💂🏾‍♂️ We promise we will protect your information.

We will only use your information for the following purposes:

email you content that you have requested from us;
with your consent, occasionally email you with targeted information regarding our service offerings and/or events;
invite your views on cybersecurity in your industry sector;
continually honour any opt-out request you submit in the future;
comply with our legal and/or regulatory obligations.

Further information about how we use and protect your information in in our privacy policy.

Subscribe to

ClarityCapabilityConfidence

Case Study

Amply Assuring Assessor™helps Layer7 reduce client's cybersecurity risk using the NIST Cyber Security Framework (NIST CSF)

Frequently Asked Questions

Do you offer discounts for charities?

ClarityCapabilityConfidence

What is your cybersecurity persona?

The path of the Jedi...

What is a jedi?

Want to go a step further?

Your information

📧 We promise we won't spam you. 💂🏾‍♂️ We promise we will protect your information.

ClarityCapabilityConfidence

Cybersecurity Christmas Countdown!

Like it? Share it!

ClarityCapabilityConfidence

The Cybersecurity Conductor’s Companion™

Conductor

Orchestra

Rehearsals

Terms and Conditions

ClarityCapabilityConfidence

Mentoring Services

Organisations

Individuals

ClarityCapabilityConfidence

Cybility's CybersecurityRing of Resources

Contact Us

We're on Social Media

ClarityCapabilityConfidence

Meet ANA

Clarity Capability Confidence

Our Mission

Our Values

Inclusivity

Inquiry

Integrity

Imagination

Investment

Why choose Cybility to meet your needs?

ClarityCapabilityConfidence

speaker engagements

Main Talks

Other Topics

ConferenceSpeaker

RoundtableModerator

GuestLecturer

Testimonials

Past Events

Frequently Asked Questions

Do you have some example talks that you can share?

How much advance notice do you need?

Will you speak at our event for free (pro bono)?

Can I book you directly or do I need to go through a speaker's bureau?

I've heard that you only do remote events, is that true?

Your information

📧 We promise we won't spam you.

💂🏾‍♂️ We promise we will protect your information.

Contact Us

We're on Social Media

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Cybility's Cybersecurity
Ring of Resources

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Clarity
Capability
Confidence

Conference
Speaker

Roundtable
Moderator

Guest
Lecturer