Services | ITlogic Solutions — IT Security, Rockwood Ontario

Assessments

Security & Technology Assessments

Know where you stand. Our assessments produce scored, documented findings with a prioritized roadmap your team can act on — not just a report that sits on a shelf.

🔍

CIS v8.1 Security Assessment

Scored cybersecurity maturity evaluation across all 18 CIS Critical Security Control domains. You receive a current-state score, gap analysis, and a phased remediation roadmap aligned to your budget and risk tolerance.

✓Scored across all 18 control domains
✓Current-state documentation
✓Phased remediation roadmap
✓Municipality and SMB variants available
✓Retest / year-over-year tracking available

📊

Technology Maturity Assessment

Five-domain capability evaluation using CMM and ITIL frameworks. Measures where your technology environment sits today and sets multi-year improvement targets with measurable deltas.

✓Five-domain CMM/ITIL framework
✓Multi-year target state tracking
✓Year-over-year maturity deltas
✓Board-ready documentation
✓Integrated with advisory service

📧 M365 Security Best Practices Assessment

Independent evaluation of your Microsoft 365 tenant configuration against Microsoft security baselines. Validates that Conditional Access policies, Defender configurations, Intune compliance, and identity settings are correctly activated. Start with our free M365 Licensing Review tool, then engage us for the full configuration assessment.

Strategic Leadership

C-Level Technology Advisory

Executive technology oversight without the cost of a full-time CIO or CISO. Structured governance, ongoing accountability, and board-ready reporting — delivered at a fixed annual price.

Tier 1 — Monthly

Monthly Advisory

Highest-engagement tier. Monthly advisory meetings with continuous risk and task tracking.

✓Monthly advisory meetings
✓Both foundational assessments
✓Biannual progress reports
✓Continuous task & risk tracking
✓Annual assessment updates (Yr 2–3)
✓3-year engagement term

Tier 2 — Quarterly

Quarterly Advisory

Structured oversight with quarterly cadence and full assessment coverage.

✓Quarterly advisory meetings
✓Both foundational assessments
✓Biannual progress reports
✓Quarterly risk tracking
✓Annual assessment updates (Yr 2–3)
✓3-year engagement term

Tier 3 — Annual

Annual Assessment

Annual assessment cycle with results presentation. Best for organizations beginning their maturity journey.

✓Annual assessment cycle
✓Both foundational assessments
✓Results presentation
✓No ongoing advisory meetings
✓Annual engagement term
✓Available as individual assessments

Individual assessments also available. All pricing is fixed — no hourly billing. Contact us for details.

Security Policies

Security Policy Suite

Audit-ready, prescriptive security policies aligned with CIS v8.1, NIST 800-53, ISO 27001, SOC 2, AI governance frameworks, and Ontario Bill 194. Ready to adopt, ready to audit, ready to defend.

CIS v8.1 (100%)NIST 800-53 (~90%)ISO 27001 (~92%)SOC 2 (~88%)NIST AI RMFISO 42001Ontario Bill 194

Core CIS

Security Framework Foundation

7 CIS v8.1-aligned policy documents covering foundational security controls.

✓7 CIS v8.1-aligned policy documents
✓All safeguards — full prescriptive language
✓Master Policy: governance, KPIs, oversight
✓Multi-framework crosswalk (NIST, ISO, SOC 2)
✓CIS v8.1 audit work program
✓1-hour orientation walkthrough

POPULAR

CIS + Public Sector

CIS + AI + Ontario Bill 194

Everything in Core CIS plus AI governance and Ontario Bill 194 compliance.

✓Everything in Core CIS, plus:
✓AI Governance Policy (NIST AI RMF, ISO 42001)
✓Ontario Bill 194 Compliance Guide
✓PIA methodology (FIPPA s.38(3))
✓Breach notification / RROSH guidance
✓Bill 194 implementation roadmap

Complete Suite

Full Multi-Framework Coverage

Complete policy coverage for organizations requiring deep NIST / ISO / SOC 2 alignment.

✓Everything in CIS + Public Sector, plus:
✓Physical & Environmental Security Policy
✓Compliance, Legal & Privacy Policy
✓Personnel Security Policy
✓System Maintenance Policy
✓~90–92% NIST / ISO / SOC 2 coverage

Policy Integration Service & Annual Maintenance

We review your existing policies, map gaps, customize language, and deliver a prioritized implementation roadmap. Annual maintenance keeps your policies current as frameworks evolve.

Enquire → Full Details →

Infrastructure

Infrastructure & Network Services

Two decades building and maintaining networks, infrastructure, and applications for Ontario municipalities and businesses. Reliable, practical, built to last.

🌐

Network Design & Build

LAN/WAN design, structured cabling, switching, routing, and wireless infrastructure for offices and municipal facilities.

🖥️

Infrastructure

Server environments, virtualization, storage, backup systems, and disaster recovery planning.

📦

Application Support

Installation, configuration, and ongoing support for business and municipal applications. Upgrades, migrations, and integrations.

🔧

Ongoing Maintenance

Proactive monitoring, patching, and maintenance programs to keep your infrastructure running reliably.

Certified & Experienced On The Platforms You Use

🔶 Fortinet🔵 Palo Alto Networks🌐 Aruba🔷 Cisco🏆 CISSP🔐 Fortinet NSE 7☁️ Microsoft Certified

Compliance & Governance

Regulatory Compliance for Ontario Organizations

Ontario municipalities and public sector organizations face an expanding set of compliance obligations. We translate these requirements into practical, defensible controls your team can implement and maintain.

📋

Ontario Bill 194

Municipal privacy and data protection obligations. PIA methodology, breach notification processes, and RROSH guidance tailored to your organization.

🤖

AI Governance

NIST AI RMF and ISO 42001 aligned AI governance policies. Critical for municipalities adopting AI tools or processing public data with automated systems.

🔒

MFIPPA / FIPPA

Privacy impact assessments, records management, and access/privacy obligations for municipal organizations.

📊

Multi-Framework Alignment

Single policy suite covering CIS, NIST, ISO, SOC 2 simultaneously — no need to maintain separate documents for different auditors.

Ontario Bill 194 — Are You Ready?

Ontario's Strengthening Cyber Security and Building Trust in the Public Sector Act imposes new obligations on municipalities, school boards, and public sector organizations. Requirements include documented security policies, privacy impact assessments, breach notification, and evidence of ongoing security oversight.

✓Documented, enforceable security policies
✓Privacy Impact Assessment methodology
✓Breach notification / RROSH process
✓Annual security oversight evidence
✓Implementation roadmap included

Talk to Us About Bill 194 →