Did you know...
  • that about 6% of companies report having to pay a ransom to regain control of critical IT systems and that experts estimate that a ransomeware attack will occur every eleven seconds?
  • businesses that come under cyberattack also incur higher costs from operational disruption (with an average downtime of 21 days) and altered business practices?
  • that the biggest losses companies experience from a cyberattack comes from reputational damage and those companies that have lost control of their customers' data have paid millions to settle claims?

As cybercrime becomes more sophisticated, businesses will have to stay one step ahead.

At Global Tactics, we deliver industry-leading assessments and security strategies to our clients including critical strategies such as zero trust. As a trusted advisor, we can help you quantify and understand your risks, extend your team resources, help detect and respond to threats, and unify your organization on security priorities to accelerate your company’s business transformation.

Assess, reduce and manage your security risk. Our experts and proven frameworks provide deep understanding of business and compliance needs.

Protect Your Company, Prevent Negative Business Impact


Global Tactics offers a range of cybersecurity assessments that evaluate protection, operational resilience, cybersecurity practices, organizational management of external dependencies, and other key elements of a robust cybersecurity framework to ensure to be ready and effectively protected to face a potential threat.

Risk and Vulnerability Assessment


GT's Risk and Vulnerability Assessment (RVA) collects data through onsite assessments and combines it with national threat and vulnerability information in order to provide your company with actionable remediation recommendations prioritized by risk. This assessment is designed to identify vulnerabilities that adversaries could potentially exploit to compromise network security controls, data systems and impact or block your business. Methodologies that a RVA may incorporate include the following:
  • Mapping and analysis of assets, information systems and technologies including cloud infrastructure, configuration reviews of existing controls (server and database security, firewall, endpoint protections)
  • External Dependencies Management Assessment
  • Identification of vulnerabilities and threats including missing controls and nonexistent or inadequate procedures and processes
  • Information security governance analysis
  • Employee awareness evaluation & social engineering
  • Scenario-based network penetration testing (targeting internal network, web applications, databases, cloud infrastructure)
  • Detection and response capability evaluation
  • Business Continuity Plan & Business Recovery Plan evaluation

External Dependencies Management Assessment


Third-party (partners, suppliers, clients) relationships that can access your company’s network and information could be a potential threat. Third-parties could have direct or indirect access to your network, and sometimes being used by an attacker to infiltrate the network and exfilitrate data or compromise and disturb business operations as well as damaging your company’s reputation.

GT’s External Dependencies Management (EDM) Assessment is dedicated to evaluate risk emerging from external connection to your company’s information security management system by analyzing and monitoring data flows to and from third-parties and establishing due diligence with third-parties to mitigate risks.

The EDM Assessment evaluates the maturity and capacity of your company’s external dependencies risk management across the following three areas:
  1. Data flow analysis
  2. Relationship formation, management and governance
  3. Service protection and sustainment

Participating in an EDM Assessment will provide your company an informed understanding of its ability to respond to external dependency risks by providing and facilitating the following:
  • Opportunity for internal discussion of vendor-related issues and your company’s reliance upon external entities in order to provide services
  • Improvement options for consideration derived from recognized standards and best practices
  • A comprehensive report on your company’s third-party risk management practices and capabilities that includes peer performance comparisons

Security Awareness and Training Services

The best way for employees to protect an organization from cybersecurity threats is to never open email or avoid being connected to the Internet. A better plan is to train employees. To foster a risk-aware culture, prepare your workforce to protect the organization against targeted attacks, and meet compliance, Global Tactics provides comprehensive program development. With continuous adaption of security awareness and phishing education, you can create security awareness that helps reduce the risk of employees falling prey to phishing scams, ransomware and viruses and causing a data breach.

Phishing Campaign Assessment


We provide an opportunity for determining the potential susceptibility of your company’s personnel to phishing attacks. This is a practical exercise intended to support and measure the effectiveness of security awareness training.

Contact us to learn how we can help your company prevent negative business impact from cyber criminals gaining control of your critical IT systems.