top of page

Choose your pricing plan

  • 60 Day Program (Package 1)

    4,000$
    Every month
    Best for small projects.
    Valid for 2 months
    • Free MHS Membership
    • Initial Gap Analysis
    • Policy and Procedure Updates
    • Technical Fixes
    • Training and Awareness
    • Progress Reporting
  • 90 Day Program (Package 2)

    5,000$
    Every month
    Best for medium projects.
    Valid for 3 months
    • Free MHS Membership
    • Detailed Gap Analysis
    • Policy and Procedure Updates
    • Technical Fixes
    • Training and Awareness
    • Third-Party Vendor Review
    • Progress Reporting
  • 120 Day Program (Package 3)

    4,500$
    Every month
    Best for large projects.
    Valid for 4 months
    • Free MHS Membership
    • Comprehensive Gap Analysis and Roadmap
    • Policy and Procedure Development
    • Technical Fixes and System Hardening
    • Training and Awareness
    • Third-Party Vendor and Supply Chain Review
    • Audit Preparation
    • Progress Reporting

Package 1 includes:

  1. Initial Gap Analysis

    • Review of audit findings and prioritization of issues.

    • Development of a remediation action plan.

  2. Policy and Procedure Updates

    • Assistance with creating or updating up to 5 key policies (e.g., Access Control, Data Classification, Incident Response).

  3. Technical Fixes

    • Basic remediation support for up to 3 critical IT systems.

  4. Training and Awareness

    • One virtual session for staff covering audit findings and key security updates.

  5. Progress Reporting

    • Bi-weekly status updates with a final report on completed remediations.

Package 2 includes:

  1. Detailed Gap Analysis

    • In-depth review of findings, with risk ratings and tailored recommendations.

  2. Policy and Procedure Updates

    • Assistance with creating or updating up to 10 policies.

    • Implementation guidance for basic compliance frameworks (e.g., NIST 800-171 or ISO 27001 controls).

  3. Technical Fixes

    • Support for remediation of up to 5 critical IT systems.

    • Assistance with basic configuration of security tools (e.g., firewalls, endpoint protection).

  4. Training and Awareness

    • Two virtual training sessions: one for general staff and one for technical teams.

  5. Third-Party Vendor Review

    • Assessment of up to 3 key vendors to ensure compliance with security requirements.

  6. Progress Reporting

    • Weekly updates and a detailed final report with actionable next steps.

Package 3 includes:

  1. Comprehensive Gap Analysis and Roadmap

    • Full review of findings, with a roadmap to address high, medium, and low risks.

    • Alignment with compliance frameworks (CMMC, NIST 800-171, SOC 2, ISO 27001).

  2. Policy and Procedure Development

    • Creation or enhancement of up to 15 policies.

    • Full guidance on policy implementation and staff adoption.

  3. Technical Fixes and System Hardening

    • Remediation of up to 10 critical IT systems.

    • Advanced configuration support for security tools (e.g., SIEM, IAM solutions).

    • Vulnerability scanning and basic penetration testing to validate fixes.

  4. Training and Awareness

    • Three training sessions: general staff, technical teams, and executive leadership.

  5. Third-Party Vendor and Supply Chain Review

    • Assessment of up to 5 vendors, including contract reviews for compliance.

  6. Audit Preparation

    • Mock audit to prepare for upcoming external assessments.

    • Guidance on documentation and evidence collection.

  7. Progress Reporting

    • Weekly updates, detailed mid-project review, and a comprehensive final report.

© 2023 by Success Consulting. Proudly created with Wix.com.

bottom of page