OUR SERVICES

Six services. One continuous assurance system.

Every HIMAYA service is designed to produce a clear assurance output: visibility, evidence, ownership, remediation tracking, or board-ready reporting.

SERVICE DETAIL

01

Ongoing Visibility

ATLAS Regulatory Assurance

Tracks control status, drift, evidence, owners, SLA deadlines and regulatory exposure across FCA, ICO, ISO 27001 and Cyber Essentials.

Real-time posture score and drift alerts
Control-by-control evidence tracking
Regulator-mapped control library
Monthly control certification
Audit Mode export in one click
Creates ongoing visibility instead of last-minute audit preparation.

ATLAS is not a SOC, SIEM or penetration testing tool.

DELIVERABLE PREVIEW

ATLAS Regulatory Assurance

Posture score: 82

Drift alerts: 4

Evidence coverage: 91%

Audit mode: Ready

02

Strategic Oversight

vCISO Lite / Monthly Oversight

Monthly review, risk posture summary, action prioritisation and executive guidance for firms without a senior internal security leader.

Monthly posture review call
Risk prioritisation and action plan
Executive summary report
Board-ready quarterly pack
Strategic recommendations
Gives SMEs structured oversight without hiring a full-time senior security leader.

HIMAYA does not provide legal advice or regulatory representation.

DELIVERABLE PREVIEW

vCISO Lite / Monthly Oversight

Top 5 risks

Action owners

30/60/90-day plan

Quarterly board summary

03

Behavioural Risk

Human Risk & Awareness Programme

Builds practical staff discipline around phishing, policy adherence and escalation behaviour in high-risk workflows.

Phishing simulations
Repeat-risk user identification
Mandatory training enforcement
Management escalation
GDPR and FCA awareness mapping
90-day KPI measurement
Supports security culture, GDPR security expectations and defensibility after incidents.

Training does not replace technical controls or legal advice.

DELIVERABLE PREVIEW

Human Risk & Awareness Programme

Click-rate trends

Repeat-risk users

Completion KPI

Escalation log

04

Accountability

Remediation & SLA Tracking

Turns unmanaged issues into owner-assigned, deadline-bound and evidenced remediation workflows.

Named owner assignment per issue
SLA countdown with auto-escalation
Regulatory impact classification
Closure evidence requirement
Management notification on breach
Turns known weaknesses into managed, evidenced action plans.

HIMAYA does not implement infrastructure fixes for your IT team.

DELIVERABLE PREVIEW

Remediation & SLA Tracking

Critical issues: 2

Due this week: 6

Escalated: 1

Closure evidence: Required

05

Audit Readiness

Evidence Library

Creates a control-linked evidence layer so audits are prepared continuously, not reconstructed at the last minute.

Control-linked evidence storage
Screenshot and config export logging
Missing evidence alerts
Expiry and renewal tracking
Timestamped audit trail
Makes audit preparation easier and improves proof of governance discipline.

Not a generic document drive disconnected from controls.

DELIVERABLE PREVIEW

Evidence Library

Missing evidence: 7

Expiring evidence: 12

Control links: 100%

Audit trail: timestamped

06

Board Visibility

Board Reporting

Provides leadership-level outputs that summarise control posture, drift trends and remediation accountability in plain language.

Monthly Control Drift Report
Quarterly assurance pack
Non-technical board language
Posture trend over time
Remediation progress summary
Gives leadership visibility and helps evidence accountability at board level.

Not legal representation and not a guarantee of regulatory outcomes.

DELIVERABLE PREVIEW

Board Reporting

Posture trend line

Top board risks

Owner accountability

Quarterly recommendations

Scope boundaries

Clear scope protects both parties.

24/7 Security Operations Centre (SOC)
Legal advice or regulatory representation
Guarantee of breach prevention
Hands-on IT execution
Ask HIMAYA