Cyber and AI Security Advisory Service

Offer Overview Organisations advancing their digital, cloud or AI adoption often need clarity on how secure their technology environment truly is. This advisory service supports customers in understanding their risks, improving security posture and building confidence in operating modern systems. The engagement focuses on practical recommendations and provides a clear path to uplift governance, protection, and monitoring capabilities using the Microsoft Security portfolio. What the Service Includes The offer provides advisory activities across four key areas: Govern: Support with security leadership, decision‑making structures, frameworks, and policy alignment. Identify: Assessment of assets, data flows, risks, third‑party exposure, and control maturity to create a clear view of current posture. Protect: Recommendations to enhance identity, data protection, cloud configuration, and other security controls using Microsoft capabilities. Detect: Guidance on monitoring, detection engineering, model‑drift considerations, and validation of control effectiveness. The engagement includes collaborative workshops, evidence analysis, and reporting designed for both technical and leadership audiences. Customer Benefits and expected Outcomes Customers gain a clear understanding of their risks and opportunities for improvement, supported by structured governance, strengthened defences, and enhanced visibility of threats and weaknesses. The recommendations help customers adopt new technologies safely, prepare for audits, and align security decisions with their wider business objectives. Engagement Overview Type: Advisory engagement Delivery Approach: Workshops, assessments, analysis, recommendations, and reporting Microsoft Technologies: Microsoft Defender, Microsoft Entra ID, Microsoft Purview, Microsoft Sentinel, Microsoft Agent 365 Industry Scope: All industries Engagement Duration: From 6 weeks+ Customer Responsibilities Customers provide access to appropriate stakeholders and documentation, participate in workshops, and support the information‑gathering process. Provider Responsibilities Kainos supplies experienced security specialists who lead the engagement, deliver assessments, and produce actionable guidance aligned with industry standards and Microsoft technologies. Exclusions The service does not include engineering, implementation or formal audits, though the advisory outputs can support preparation for such activities. Additional services may be contracted separately.