Use this when: a customer asks security questions.
This is not a pentest. We review known facts, existing evidence, and what your team can support.
The goal is to answer accurately without overclaiming.
Inputs
- Security questionnaire or spreadsheet.
- Buyer email.
- Request for evidence.
- Old pentest report or customer findings.
Work
- Review existing material.
- Speak with the team.
- Separate facts from assumptions.
- Mark gaps.
Output
- Answer draft.
- Evidence list.
- Gaps and caveats.
- Next steps.
Not included
- Active security testing.
- Legal commitments.
- Audit or certification work.
- Running your IT or security team.
- Fixing every issue found.
Typical timeline: 3-5 working days.
Budget: €2k-€5k.