back to listings SME Profile: Synovum Ltd

Synovum Cyber Security
International House, 36-38 Cornhill, London, England, EC3V 3NG

T:  (0) 20 3287 0664   |   E: enquiries@synovum.co.uk   |   W: www.synovum.co.uk

     

 

About Us

Synovum Cyber Security provides governance, risk and compliance (GRC), technical assessment, training delivery and cyber investigatory services to clients in government, military and multiple industry verticals within the private sector.

Why Choose Synovum?

  1. All Synovum consultants have extensive experience in IT and information/cyber security and hold internationally recognised professional certifications:
    • CISSP, CISM, CRISC, CEH, ISO 27001 Lead Auditor & Implementer, CTT+, Advanced OSINT, SEPP-Social Engineering Pen-testing Professional.
    • Some consultants hold additional academic certifications (MSc Information Security), a course accredited by the UK’s GCHQ.
  2. Synovum holds a Gold-level certification to the Cyber Essentials scheme and is a Certifying Body for the UK National Cyber Security Centre's Cyber Essentials and Cyber Essentials Plus certification schemes. 
  3. Synovum is also a Certifying Body for the IASME Governance Standard.
  4. Based in London, international assignments have been undertaken in multiple worldwide locations.
  5. Synovum is a member of multiple industry organisations and has partner agreements with industry-leading vendors (Sophos, Egress, KnowBe4, Acornis and Proofpoint).
  6. Synovum actively supports fundraising efforts for several charities, including Cancer Research UK, the Stroke Association, Combat Stress and Help for Heroes.

 

 

Our Services

Synovum can provide services in a number of different areas.  Select one of the options below to learn more. 

Capability Assessment

A cyber capability assessment can assist your organisation to build an effective security programme.

+ Learn More

Compliance Services

Compliance and assurance can help organisations respond to threats, pinpoint inefficiencies, and focus on core business activities. 

+ Learn More

Technical Assessments

Technical assessments are essential for an organisation to identify flaws within its network infrastructure  or applications.

+ Learn More

Policy Review 

Given the ever-evolving threat landscape, it is important to have policies that are both fit-for-purpose and are reviewed on a regular basis.

+ Learn More

Risk Management

An organisation's risk management function requires a thorough understanding of cyber risks in addition to the tools and techniques to address them.

+ Learn More

Virtual vCySM™ Service

For organisations without the requisite knowledge, skills or experience in this area, we offer a virtual Cyber Security Manager (vCySM™) service.

+ Learn More

Cyber Investigations

A key element of any security programme should include consideration of the risk to an organisation's personnel. 

+ Learn More

Cyber Essentials

Synovum can certify your organisation to Cyber Essentials, Cyber Essentials Plus and the IASME Governance Standard.

+ Learn More

Training Delivery

Synovum can deliver CompTIA and EC-Council certification-level courses to to your organisation, either remotely or in person.

+ Learn More

 

Clients 

Synovum has worked with clients of varying sizes on initiatives differing in size, scope and complexity.  Some of these clients are shown below.

Boeing Defence

North Atlantic Treaty Organisation (NATO)

Maersk

National Cybersecurity Authority, Saudi Arabia (NCA)

Communication and Information Technology Regulatory Authority (CITRA), Kuwait

The Office of the Minister of State for Administrative Reform (OMSAR), Lebanon

Home Office, UK

European Bank for Reconstruction and Development (EBRD)

Foreign & Commonwealth Office (FCO), UK

HCA Healthcare UK

James Fisher

 Defence Science and Technology Laboratories (DSTL)

 

Case Studies

Capability Assessment & CERT Development

Given the government sector client’s intention to improve its cyber security posture, co-ordinate information sharing, proactively manage cyber risks, and ultimately establish a Computer Emergency Response Team (CERT), Synovum Ltd. was engaged to assist the client and provide a number of specific deliverables.

The initial deliverable documented an assessment of the current practices and human capacities of the client with regards to both information security management and incident response.

The second deliverable documented the proposed vision, suggested governance structure and road-map for the CERT.

The final deliverable documented a proposed strategic plan for the CERT to meet the client’s requirements, the content of which consisted of an action plan, timetable, budget estimation, reference to relevant security standards (ISO, NIST etc.) and a training master plan.

Given the strict delivery timeline imposed by the client, all deliverables were submitted and approved by the client.

Cyber Security Strategy

Following release of the National Cyber Security Strategy for a Middle Eastern nation state, a consultant from Synovum provided subject-matter expertise to a UK-based organisation tasked to provide a number of deliverables forming the basis of a subsequent 3 year implementation programme.  This expertise was provided in a number of areas, including standards, compliance, risk, and organisational maturity.

Following completion of the information discovery phase, the consultant provided analysis and identification of appropriate risk/maturity measurement models, in addition to applicable national/international standards to which the subsequent implementation projects/programmes should conform.

The analysis and recommendations were documented and submitted to the client as part of the overall project deliverables.

Data Loss Prevention

Given the risk from unauthorised release of information, the financial services client's requirement existed for of a data loss prevention (DLP) solution to be implemented. 

This could ensure that highly sensitive proprietary information was not released via email or USB without sufficient business justification,  or through unauthorised upload to an un-managed cloud storage provider.

Following documented agreement of the solution requirements and subsequent configuration and extensive testing, the Synovum consultant successfully managed the deployment of the DLP solution to the organisation.

General Security Consultancy

Planning and implementation of a number of different activities was required to improve security for a number of international locations which regularly communicated with a UK main office.

Following asset identification, a plan to update, patch and monitor these information assets was implemented, in addition to provision and subsequent implementation of best-practice advice in terms of backup management, use of data encryption tools, password management and a security awareness programme for employees.

​Following implementation of the recommended best-practice advice, using the CIS 20 Critical Security Controls as a baseline control reference document , the organisation was able to both secure its information assets and ensure that its employees were aware of the potential security risks relating to use of IT.

Social Media Footprinting

In advance of future business development, a request was received to carry out an assessment of the current online footprint of both the organisation and key company personnel. 

A comprehensive assessment was undertaken, with the findings and recommendations documented in a confidential report delivered to the client in encrypted format.


 

Supplier Locator Free Text Search Area

To find the relevant supplier by company name, product or service, please use the free text search box provided below:

[ Search tip: Separate words with spaces ]

Facing the Future...find out more