Ransomware Readiness Assessment

Name: Ransomware Readiness Assessment
Price range: $$

Prepare your company for Ransomware.

Monitoring

2500 € / semi-annually
Single Test

3500 €

Steps

Ransomware can destroy your business - the most dangerous threat. Test yourself, before the hackers do. We do it for you.

💡 Important Hint

Ransomware evolves rapidly. Secure your business with EUSEC semi-annually — we recommend a subscription plan of this module for ultimate peace of mind.

Step 1

Kick-Off (60 min)

We guide you through our methodology and align on two deep-dive focus topics. (Note: A deep dive into Backup & Recovery is mandatory for all clients).

Result: Time slots for the external tests and deep-dive interviews are planned (step 2 and 3).

Step 2

External Testing

We test your infrastructure from the outside—exactly like a hacker would, but completely safe and non-invasive.

Result: For every domain, you receive a management summary, a comprehensive 20-page report, and 6 technical attachments.

Step 3

Deep-Dive Interviews

We conduct three specialized interviews (90–120 minutes each) covering your selected focus areas.

Step 4

Closing meeting

In a final closing meeting, we present our findings and provide clear, actionable recommendations to bulletproof your business against modern ransomware attacks.

Request Your Custom Assessment

Sheet

Category

Security Test
Your internal effort (~)

6 - 12 h
Duration

2 - 8 weeks
Compliance & Accountability relevant?

✅
Applicable to/at

All public institutions & industries of any size
EUSEC®-Module

EUSEC-Ransomware-26A

Details

Key Outcomes (What you achieve)

Independent Validation: Your external ransomware risk is objectively assessed by top-tier experts.
Risk Reduction: Critical vulnerabilities are exposed and eliminated, significantly reducing your ransomware risk.
Improvement Started: Your company is empowered to implement effective measures to detect, withstand, and recover from ransomware attacks.

Deliverables (What you receive)

Traceable Evidence: Comprehensive documentation of your technical and organizational measures (TOMs) against ransomware, validated by a Principal Cybersecurity Expert.
- - Overall Report: An executive-ready Overall Report and Management Summary (5–10 pages).
  - Domain-Specific Reports: A deep-dive test report (~20 pages) + management summary + attachments for each analyzed domain.
  - EUSEC® Certificate: Awarded upon successful assessment with only minor findings (zero yellow or red flags)

In-Scope

Kick-off Meeting: 1-hour alignment and onboarding session.
Deep-Dive Interviews: 2 specialized focus topic sessions (2 hours each).
Mandatory Crisis Interview: 1 obligatory 2-hour session focusing on backups, emergency response, and crisis management.
External Security Testing: Assessment of up to 3 main domains (e.g., for digital services or subsidiaries). Includes 3 security test report packages (~20 pages each) and 3 domain-specific management summaries. Tests include:
- Data leak research in leaked credential databases
- Email spoofing vulnerabilities
- DNS infrastructure and subdomain assessment
- Encryption analysis of critical ports and services
- Mail security testing (if self-hosted)
- ...and more.
Comprehensive Expert Report: An overarching assessment written by a Principal Cybersecurity Expert (approx. 5–10 pages).
Executive Summary: A high-level, overarching management summary for leadership.
Measure catalogue: A comprehensive catalog of measures providing concrete, actionable recommendations.
Expert Risk Assessment: An independent risk evaluation conducted by a highly qualified EUSEC® cybersecurity expert.

Out-of-Scope

Additional Domains: Testing more than the 3 included main domains is optional and can be added upon request.
Group/Corporate Entities: Corporate groups or companies with multiple subsidiaries may require a separate package for each (legal) entity.
Implementation of corrective actions.
General Exclusion: Everything else not explicitly mentioned as In-Scope is strictly Out-of-Scope.