Get 25% off when you buy all 3 of our packages!

When you enlist us for a Risk Consultation, Program Development, and get 1-year of our Protective Services, get it all for $4,498* and we'll include bonus services! 

*Price for up to 25 employees. See below for larger offices.

Offer includes $7,565 worth of services!

• Risk Consultation
• Program Development
• 1-Year of Protective Services
• Included Bonus Services: Security Awareness Training, Phishing Simulations, and Core Systems Security Review
• Discounts on future or renewed services

Don't want to pay in full? Use the Klarna option on the next page to choose from affordable payment options by breaking it into 3, 6 or 12 payments!

Here's what's included and individual pricing for businesses with 25 employees or less:

Risk Consultation ($1,999 value):
Cybersecurity Risk Assessment
Risk Report
Remediation Plan

Program Development ($1,999 value):
Policies & Procedures
Incident Response Plan
Cybersecurity Program Plan (WISP)
Plan of Actions & Milestones (POAM)

  Protective Services - 1-Year Subscription ($1,999 value):
Vulnerability Management for up to 30 IP Addresses
Microsoft 365 Security Resources for up to 30 licenses

Bonus Services ($1,098 value):
Security Awareness Training and Phishing Simulations ($599)
Core Systems Security Tune-Up ($499)

For larger offices or those that have more advanced needs than above:

• Book a free cyber strategy consultation [HERE] and we'll tailor a package to fit your needs
• You can add more advanced compliance support
• We also can provide other services that are not included in the package above, like Penetration Testing

Terms

Consulting and services fall under the standard RLS Terms of Service currently located HERE and the Service Order below. You must agree to these terms and conditions to proceed with your purchase.

SERVICE ORDER

 This Service Order (“SO”) is entered into as of the date purchased (the “Effective Date”), by and between RLS Consulting, LLC, a Colorado limited liability company residing at 1480 Abilene Dr, Broomfield, CO 80020 (“RLS”) and the customer submitting this order (“Customer”).

1. SERVICES. RLS agrees to provide the following services (the “Services”) to Customer, as more fully described on Schedule A. Additional work beyond this scope may require a new SO.

2. PRICING AND PAYMENT. Customer agrees to pay for all services provided by RLS using either a credit card or Automated Clearing House (ACH) transfers via our online payment system. No other forms of payment will be accepted unless explicitly agreed upon in writing by both parties.

3. TERM. Except as otherwise set forth in the Services Descriptions in Schedule A, below, the initial term of the Services shall be 12 months (the “Initial Term”). Unless at least thirty (30) days written notice prior to the end of the Initial Term or any Renewal Term is provided by either party, the term will continue (the “Renewal Term”) at the pricing and original term. The Initial Term and any Renewal Terms shall collectively be referred to as the “Term.” All subscriptions require a full 12 month commitment, regardless of payment plan type.

4. ADDITIONAL TERMS AND CONDITIONS. Unless otherwise agreed, this SO, and the Services provided, are governed by the standard RLS Terms of Service currently located HERE (the “RLS Terms”). All capitalized terms in this SO shall have the meaning ascribed to them in the Terms of Service, unless otherwise defined in this SO.  Customer represents and warrants that the Customer agrees to the Terms of Service and all terms referenced in and incorporated into the Terms of Service.

5. COMPLETE AGREEMENT, AMENDMENTS. The SO, the SOW (if any) and the Terms of Service (collectively the “Agreement”) constitute the complete and exclusive statement of agreement among the parties with respect to the subject matter of the Agreement and replace and supersede all prior and contemporaneous written and oral agreements, negotiations, discussions or statements by and among the parties. The Agreement may be amended only by a subsequent writing that specifically refers to the Agreement and that is signed by both parties. No other act, document, usage, or custom, including any printed terms and conditions contained in any purchase order, shall be deemed to amend the Agreement.

The individuals who execute this SO represent and warrant that they have full legal authority to execute this SO and thereby bind the parties to full performance.

SCHEDULE A

1. SERVICE DESCRIPTIONS.

• Risk Consultation

  • RLS will work with Customer to complete a cybersecurity risk assessment designed to assess the likelihood and impact related to cyber risks to the Customer's environment.

  • Deliverables:

    • Cybersecurity Risk Assessment: A system-based assessment of Customer's risks related to Likelihood and Impact factors.

    • Risk Report: Summary of findings and recommendations based on the Risk Assessment.

    • Remediation Plan: A plan with prioritized steps to address the most critical risks in the Customer's environment based on the findings in the Risk Assessment.

• Program Development

  • RLS will work with Customer to develop a cybersecurity program based on the requirements and areas of risks related to Customer's environment.

  • Deliverables:

    • Policies & Procedures: A document to demonstrate the information security practices adopted by Customer, aligned to common best practices and Customer's requirements.

    • Incident Response Plan: A document that defines policies and procedures specifically related to how cyber incidents will be investigated and responded to, based on specific practices and needs of Customer.

    • Cybersecurity Program Plan: A document describing the overarching approach and strategy for how the Customer is designing their plan to manage their cyber risks.
      
      
• Consulting Engagements

  • The project will be conducted through 8 online consulting engagements (about 60 min each). Meeting topics may vary but, in general, will include:

    • Initial review of current practices and begin documenting inventory

    • Review of risks and gaps, and identify priorities to begin addressing

    • Adoption of policy templates modified to align with risks and requirements

    • Finalize policies and related cyber program documents

    • Create and review a Plan of Action & Milestones (POAM) to implement cyber program

    • Review ongoing procedures needed to maintain cyber program

    • Discuss Incident Response Process and template

    • Finalize full cyber program

• Vulnerability Scanning via Nodeware and Ember Trail - One Year Subscription

  • The initial service order includes up to 30 IPs included in this service. Additional IPs may be added through a new service order.

  • Agent based and ongoing external and internal vulnerability scanning and reporting

  • Setup and configuration

  • Remediation of vulnerabilities is not included and will be performed by Customer

• Microsoft 365 Security with Overe.io and Ember Trail - One Year Subscription

  • The initial service order includes up to 30 accounts licensed for this service. Additional licenses may be added through a new service order.

  • Includes access to Overe - Protect and Overe - Assess.

  • Initial setup, configuration, and basic support included.

• Security Awareness Training and Phishing Simulations - One Year Subscription

  • Leveraging a third-party phishing simulation program, RLS will work with Customer to setup, implement, and manage a training and phishing program for their users.

  • Training campaigns will be sent monthly and include short content intended to help staff build awareness around important security-related topics.

  • Phishing campaigns will be created to run on a monthly basis to test users and their ability to avoid interacting with controlled phishing simulations.

  • The initial service order includes up to 25 users. Additional licenses can be added at a pro-rated amount through another order.

  • For use of the phishing platform, currently Phishr, the organization must agree to the Terms of Use when they complete enrollment. This can be viewed in advance here: Phishing Terms
    
    

2. ASSUMPTIONS. In addition to any other assumptions identified in this SO, RLS’ delivery of service under this SO, the estimated timeline, and the fees, are subject to the following assumptions:

• RLS will be provided access to Customer resources, employees, and documentation as needed to perform the Services listed in Section 1.

• RLS does not make any form of representation, warranty, or guarantee that improvements to cyber risk or training can make anyone 100% secure from an attack.

• Unless described otherwise, no travel is expected or included.

• All work will be performed during normal business hours.
  
  

3. CUSTOMER RESPONSIBILITIES. In addition to any other responsibilities identified in this SO, RLS’s delivery of service under this SO, the estimated timeline, and the fees, are subject to Customer complying with the following obligations:

• Project Manager.  Customer shall designate one of its employees to serve as its primary contact with respect to this Agreement and to act as its authorized representative with respect to matters pertaining to this Agreement and who will have the authority to act on behalf of Customer in connection with matters pertaining to this Agreement, with such designation to remain in force unless and until a successor is appointed.

• Response.  Customer shall require that the Project Manager respond promptly to any reasonable requests from RLS for instructions, information, or approvals required by RLS to provide the Services.

• Cooperation.  Customer shall cooperate with RLS in its performance of the Services and provide access to premises, employees, and equipment as required to enable RLS to provide the Services.

• Consents.  Customer shall take all steps necessary, including obtaining any required licenses or consents, to prevent Customer-caused delays in RLS's provision of the Services.