Question 1

What does AssurePath's cyber operations service include?

Accepted Answer

24/7 managed SOC delivered by our chosen UK SOC partner, plus EDR, identity and access protection, vulnerability management and patching, incident response co-ordination, Cyber Essentials Plus and ISO 27001 advisory, live tabletop exercises run by us, and fractional CISO. Sub-15-minute P1 escalation. Fixed monthly fee. No per-incident charges.

Question 2

How much does it cost?

Accepted Answer

Pricing is per user per month, fixed. Managed SOC (via our UK SOC partner) starts at £18 per user per month. EDR plus identity from £28 per user per month. The full cyber operations bundle from £65 per user per month. Tabletop exercises - which we run directly - are a separate fixed fee from £3,500 per session. Fractional CISO retainers from £1,000 per month.

Question 3

What is a tabletop exercise and how does it work?

Accepted Answer

A discussion-based session where your team walks through a simulated incident with an AssurePath facilitator. Half-day from £550 + VAT (one scenario, 2-4 hours), full-day from £1,250 + VAT (multiple scenarios, 6-8 hours, 90-day review). Includes pre-exercise planning, custom scenario, expert facilitation and an after-action report within one week. Counts toward CE+, ISO 27001, NIS2 and DORA testing requirements.

Question 4

How quickly do you respond to an incident?

Accepted Answer

P1 incidents are escalated to a senior analyst at our UK SOC partner in under 15 minutes, 24/7. Critical containment within one hour. Forensic triage and stakeholder comms inside four hours - AssurePath co-ordinates the response on your side. We use your tools where possible - Microsoft Defender, CrowdStrike, SentinelOne - so there is no second tooling stack to learn.

Question 5

How do you support Cyber Essentials and ISO 27001 certification?

Accepted Answer

AssurePath is an independent UK compliance consultancy. We deliver Cyber Essentials, CE Plus, ISO 27001 and UK GDPR programmes end-to-end - sector specialists in accountancy, legal and FCA-regulated firms. Hours-based pricing against a clear roadmap. See our compliance page for the full programme. Most clients use us to reach Cyber Essentials Plus or ISO 27001 within 90 days of starting our service.

Question 6

Do you work with FCA-regulated firms?

Accepted Answer

Yes. Our fractional CISO service - and the managed SOC we resell - are designed for FCA-regulated firms, IFAs, wealth managers and EMIs. We support Consumer Duty, SM&CR governance, audit-ready evidence trails and on-premises or private VPC deployments where regulation requires it.

Question 7

Will it work with our existing security tools?

Accepted Answer

Yes. We integrate with Microsoft Defender for Endpoint, Microsoft Sentinel, CrowdStrike, SentinelOne, Sophos, Mimecast, KnowBe4, Okta, Duo and most line-of-business security tools. If we cannot integrate, we say so in scoping before any contract is signed.

UK cyber experts. Securing your business, however it needs securing.

Eight ways we make you harder to hit.

Fractional CISO

Cyber Essentials & ISO advisory

Tabletop exercises

Cyber risk assessments

Identity & access programmes

Endpoint detection & response

Vulnerability management

Incident response co-ordination

Tabletop exercises -
test your plans before crisis hits.

Built for firms an auditor reviews.

Cyber Essentials Plus

ISO 27001 advisor

FCA-aware

Insurer- & ICO-ready

Cyber questions buyers ask first.

Free cyber audit.
Whether you switch or not.