Skip to main content
Black Tyger Strategies

Cybersecurity Operations Assessment

Cybersecurity Operations Assessment — Free Assessment

Assessment Form

Contact Name(Required)
Do all staff receive security policy training at onboarding and at least annually thereafter?(Required)
Is policy compliance monitored — through audits, automated controls, or behavioural measurement?(Required)
Is there a documented incident response plan covering detection, triage, containment, and recovery?(Required)
Has the incident response plan been tested through a tabletop exercise in the last 12 months?(Required)
Is there a formal access provisioning process — requests, approvals, and provisioning within defined SLAs?(Required)
Is access revoked within 24 hours of employee departure — across all systems?(Required)
Do all staff understand how to classify and handle sensitive data?(Required)
Are there clear, enforced rules for sharing sensitive data externally — approved channels and encryption requirements?(Required)
Are critical vulnerabilities patched within 14 days and high within 30 days?(Required)
Is vulnerability scanning conducted at least monthly across all internet-facing and internal systems?(Required)
Is a SIEM or equivalent log aggregation and alerting platform in use covering all critical systems?(Required)
Does security monitoring cover endpoints, network, identity, and cloud — not just perimeter?(Required)
Do all staff complete phishing awareness training at least annually?(Required)
Are phishing simulations conducted at least quarterly to measure and improve staff resilience?(Required)
Is endpoint patch compliance tracked — what percentage of endpoints are on the current OS and application versions?(Required)
Is EDR health monitored — are all endpoints covered and all agents current?(Required)
Does the change management process require security review for changes that affect security controls?(Required)
Is there an emergency change process that maintains security review — even under time pressure?(Required)
Is third-party access controlled — time-limited, least-privilege, and monitored?(Required)
Is there a current inventory of all third parties with access to systems or data?(Required)
Are physical access controls in place for server rooms, network infrastructure, and sensitive areas?(Required)
Is a clean desk policy enforced — no sensitive documents or credentials left visible?(Required)
Do staff feel comfortable reporting security concerns or mistakes without fear of blame?(Required)
Do leaders visibly model security-positive behaviours — locking screens, using MFA, following clean desk policy?(Required)