+373 61 263 997 Free IT Audit

B

19 services

Cybersecurity

Compliance with Cybersecurity Law No. 48/2023 (in force since 01.01.2025). Requirements for providers in critical sectors.

Subcategories

Applicability Assessment & Registration

• Applicability determination
• Provider registry registration

Governance & Risk Management

• Network and systems security policy
• Risk Management framework
• Asset Management — IT inventory
+5 more

Incident Detection & Notification

• Incident detection and classification procedure
• Authority notification procedure
• Coordinated Vulnerability Disclosure (CVD) program
+2 more

Security Testing

• External pentest (Black-box / Grey-box)
• Internal pentest
• Web app audit OWASP Top 10 / ASVS
+1 more

All services in this category

Code	Service	Duration	Price
B.1.1	Applicability determination We determine whether the client falls under the law as 'essential' or 'important' provider.	1–2 days	1,320 €	Details →
B.1.2	Provider registry registration Preparation and submission of documents to the competent national cybersecurity authority.	2–3 days	1,320 €	Details →
B.2.1	Network and systems security policy Top-level document required by law.	2–3 days	1,320 €	Details →
B.2.2	Risk Management framework Risk register, likelihood/impact matrix, treatment plan, annual review.	5–8 days	1,560 €	Details →
B.2.3	Asset Management — IT inventory CMDB, automated inventory of servers, containers, SaaS subscriptions, certificates.	5–10 days	1,920 €	Details →
B.2.4	Network segmentation Separation of production/test/office networks; Zero Trust / microsegmentation.	5–10 days	1,920 €	Details →
B.2.5	Backup and recovery (BCP/DRP) 3-2-1 strategy, immutable backups, restoration tests.	5–10 days	1,920 €	Details →
B.2.6	Vulnerability management Nessus/Trivy/OpenVAS deployment, CVSS-based remediation, patching SLA.	5–8 days	1,560 €	Details →
B.2.7	Endpoint protection EDR/AV on servers and workstations, central management, 24/7 alert response.	1 days	Monthly480 €	Details →
B.2.8	Supply chain security Vendor verification, SBOM, security questionnaire for vendors.	5–8 days	1,560 €	Details →
B.3.1	Incident detection and classification procedure Distinction between incident / significant incident / near-miss.	2–3 days	1,320 €	Details →
B.3.2	Authority notification procedure Templates: early warning, interim report, final report.	1–2 days	1,320 €	Details →
B.3.3	Coordinated Vulnerability Disclosure (CVD) program Public security.txt page, disclosure policy, researcher interaction process.	2–3 days	1,320 €	Details →
B.3.4	SIEM / Log Management Wazuh / Graylog / ELK deployment, event correlation, alerts, dashboards.	10–15 days	3,120 €	Details →
B.3.5	SOC-as-a-Service (24/7) Our team monitors 24/7, responds per runbook, escalates incidents.	1 days	Monthly1,800 €	Details →
B.4.1	External pentest (Black-box / Grey-box) External perimeter attack simulation, CVSS report, recommendations.	5–10 days	1,920 €	Details →
B.4.2	Internal pentest Penetration test from a compromised employee's position.	5–10 days	1,920 €	Details →
B.4.3	Web app audit OWASP Top 10 / ASVS Full audit of a single web application focusing on OWASP Top 10 and ASVS standard.	5–8 days	1,560 €	Details →
B.4.4	Employee phishing simulations Regular campaigns, click-rate metrics, training based on results.	1 days	Quarterly350 €	Details →