top of page

Cybersecurity

Paua Interface virtual tech team

Welcome to Pāua Interface's Cybersecurity Service.

 

Protect your organisation.

Protect your customers' data.

Don't wait for an incident.

Our international certified team of cybersecurity specialists will help strengthen your cybersecurity posture.

​One off services

Cybersecurity gap/maturity assessments

Compliance audits

Incidence response

Awareness training for Boards

Awareness training for staff

Subscription services

Basic plan incudes:

Endpoint security

Cloud security

Data encryption and decryption

Network security

Premium plan incudes:

Everything in Basic plan plus ...

Detailed Compliance Reporting
Advanced Threat Detection
Extended 24/7 Support

 

Cybersecurity Gap/Maturity Assessments

 

We apply the international National Institute of Standards and Technology (NIST 2.0) Cybersecurity Framework, and other frameworks widely used in all sectors around the world to help protect your data and system from attacks.

 

We measure your practices and capabilities against benchmarks based on international frameworks. We identify gaps, vulnerabilities and risks. We put a roadmap in place. Then we help you deliver it.

See below for more.

Benefits to your organisation

 

  1. Be recognised for best cyber security practice, that shows your customers, stakeholders, leaders that you mean business when protecting their data.

  2. Equip your people with knowledge on how to improve your cybersecurity posture together as a community, across governance, systems, policies, technical, processes and people.

  3. Save time and the costs of recruitment and staff turnover. Instead, partner with Pāua Interface's dedicated cybersecurity team – always there, always up to date.

Three good reasons to use this service

 

1. Know the gaps: Know where you stand and the areas to improve so you're protected against threats.

 

2. Don’t wait until it happens: Get in front of threats. Complacency is not an option. Get a plan now.

 

3. Inform your cybersecurity investment decisions: Really get to know your cybersecurity posture so you can make informed decisions about where to allocate your resources and invest.

Three good reasons to use Pāua Interface

 

Save costs. Reduce risks: Make us your trusted partner. Save heavy recruitment costs and reduce the risks of in-house skills shortages and staff turnover.


Get it right-sized: Like the perfect suit, get it fitted first by our team. Don’t waste time on fancy generic assessments that don’t apply to your organisation. Set your own future-state maturity levels.

Right team, right skills:

The combined skills, qualifications and experience (NZ and international) of the team include security specific qualifications: NIST 2.0 (NIST 800-171, NIST 800-53, ISO 27001. Certified Information Systems Security Professional. Risk analysis (CRISC), USF cyber security for Executives Certificate.  NIST 800-53, ISO 27001. CompTIA Security+ CMMC Registered Practitioner
Defense Acquisition University. Applied science, cyber security.

The combined wider IT skills, qualifications and experience (NZ and international) include: Full professional memberships IT Professionals NZ, Computer Science, IT and Information Systems degrees, IT project management (PMP, CSM, CSPO). Cisco Networking Academy.​

 

Outcomes of our cybersecurity services:

  • Improved cyber security maturity for your organisation.

  • Reports, roadmaps and recommendations.

  • Solutions, remediation and incident responses.

  • Information to help leaders and Boards know where to allocate resources and invest.

  • Increased awareness for all staff so they're empowered as a community to advance your organisation's cybersecurity maturity.

 

Lite35

NZD $10,000 +gst

Discounts for collectives (25%), terms and conditions apply.

​​

For a softer start to your cybersecurity maturity assessment journey, Lite35 is a good first step.

 

If you’re an agency with external stakeholder organisations that need cyber security assessments at a 'collective' price, let’s talk.

  • International best practice NIST 2.0 based assessment (and we use other frameworks of your choice).

  • 35 critical cybersecurity questions, no fluff.

  • Interview up to three of your key informants at three levels (governance, strategy, operations).

  • Set your future state cyber maturity levels.

  • Quickly get to the crux of your cybersecurity posture.

Deliverables:

  • Report, recommendations, high-level roadmap, and an online session for Boards and Leaders.

  • Cybersecurity issues identified and prioritised.

  • Recommendations to help make your next cybersecurity decisions.

 

Best for:

  • Small organisations, health providers, schools, not-for-profits, SMEs.

  • Agencies interested in a 'collective' option and managing the service for their stakeholder organisations to reduce the overall costs.

  • Organisations with no in-house technical capability.

  • Organisations at the very start of their cybersecurity journey.

  • Larger agencies or companies wanting to explore Pāua Interface as their cybersecurity partner.

 

If you’d like to talk about whether Lite35 is right for your organisation contact us now to find out more.

Lite106
NZD $35,000 +gst

 

If your decision-makers want a thorough view of their cybersecurity maturity assessment journey and have in-house tech staff, Lite106 is a good choice.

  • International best practice NIST 2.0 based assessment.

  • 106 critical deep dive cybersecurity questions.

  • Your in-house IT team self-assesses, we independently analyse and report.

  • A cybersecurity roadmap for your organisation.

  • Advisors available to support.

  • Set your own future state cyber maturity levels.

  • If you’ve already completed Lite35 don’t worry, it folds into this service. Nothing is lost.

Deliverables:

  • Report, recommendations, and an online session for Boards and Leaders.

  • A roadmap for governance and operations.

  • Recommendations to help make your next cybersecurity decisions.

Best for:

  • Any size organisation, corporates, government, not-for-profits, SMEs.

  • Organisations with in-house technical capability.

  • Organisations at any stage of their cybersecurity journey.

If you’d like to talk about whether Lite106 is right for your organisation contact us now to find out more.

Full106
Price: $50-150,000.

Pricing determined by size of organisation, staff, and sector.

If your decision-makers are ready for a fully independent cybersecurity maturity assessment and need evidence of cybersecurity services then Full106 is a good choice.

  • International best practice NIST 2.0 based assessment.

  • Fully independent assessment and senior advisor-led.

  • 106 critical deep dive cybersecurity questions.

  • Advisors drill down, gather evidence, and review documents.

  • Cybersecurity roadmap for your organisation.

  • Set your own future state cyber maturity levels.

  • If you’ve already completed Lite35 or Lite106 don’t worry, it folds into this service. Nothing is lost.

 

Deliverables:

  • Evidenced-based report, recommendations, and an online session for Boards and Leaders.

  • A roadmap for governance and operations.

  • Recommendations to help make your next cybersecurity decisions.

Best for:

  • Any size corporates, government, not-for-profits.

  • Organisations with Leaders who are on-board now.

  • Organisations at any stage of their cybersecurity journey.

If you’d like to talk about whether Full106 is right for your organisation contact us now to find out more.

MANAGED
Price: Starts at $15,000per annum.

Pricing determined by size of organisation, staff, and sector.


If your decision-makers want a long-term cybersecurity partner, just a call away, who can be counted on to keep them current, then MANAGED is a good choice.

  • Centralised and independent service led by our virtual CISO and team and supporting your leaders and/or in-house IT staff.

  • Will design and/or implement your 'business as usual' cybersecurity programme and functions including risk registers and reporting to Leadership teams and Boards, workshops with staff, and more.

  • Manage your procurement and vendors.

  • Minimum one day per month or as much as you need, and pricing can be capped for certainty.

  • Reduce your recruitment or staff turnover costs and risks.

  • Advisors available by the hour if required.

 

Deliverables:

  • Establish and manage your cybersecurity programme and functions.

  • Regular reporting to your Board or Leaders.

Best for:

  • Any size corporates, government, not-for-profits with no dedicated cybersecurity team in-house.

  • Organisations with leaders who are on-board now.

  • Organisations at any stage of their cybersecurity journey and wanting to save costs and avoid recruitment issues.

If you’d like to talk about whether MANAGED is right for your organisation contact us now to find out more.

bottom of page