News: Many cyber security providers are moving into consultancy, such as IBM and BlackBerry.
BT has launched the consultancy programme Cyber Roadmap Consulting, which will help large organisations determine their level of cyber risk and plan accordingly.
The service, provided by consultants from BT’s global cyber security consulting team, will create bespoke mitigation and defence plans for each customer and provide step-by-step guidance on how they can improve their security.
This includes recommending improvements aligned to specific business priorities and specific IT context.
The service is compliant with key accreditations such as ISO27002, the U.S.Commerce Department’s National Institute of Standards and Technology (NIST) Cyber Security Framework and the U.S. Federal Financial Institutions Examination Council (FFIEC) requirements for the financial services industry.
BT said in a statement that the service was already being used by "one of the world’s largest financial organisations".
Guus van Es, BT’s general manager for Security Consulting, said: "Our approach not only identifies gaps, it takes a broader view on how to help customers stay ahead of the threat curve.
"Based on our wealth of experience in protecting BT and our customers, it is an integral part of our security portfolio. This includes bespoke design, implementation and operate capabilities as well as delivery of managed services and help with transformation projects."
He said that the vendor-agnostic approach of the consultancy would allow customers to achieve realistic improvements while making the most of their existing investments.
More and more cyber security companies are expanding into the consulting market, rather than simply offering products.
Alongside its acquisition of Resilient Systems in February, IBM announced the X-Force Incident Response Services unit, which is a consultancy arm working directly with clients to help them prepare for and mitigate cyber attacks.
Also in February, BlackBerry acquired Encription, which will form the basis of its new consulting practice, the Professional Cybersecurity Services.