Melbourne, 9 October 2024 – Cythera, a leading Australian cybersecurity service provider, today announced it has achieved ISO 27001 certification, demonstrating its commitment to the highest standards of information security management. The company also revealed significant enhancements to its Managed Detection and Response (MDR) service, offering unparalleled protection and support to businesses facing evolving cyber threats that surpass the limitations of product MDR tools offered by the major security vendors.

The decision to pursue ISO 27001 certification was driven by a combination of factors, including customer expectations and internal security goals. “Our customers demand it and have a low tolerance for security providers and technologies that experience product faults or cybersecurity breaches,” says Craig Joyce, Cythera’s Director, “As a security provider, we need to lead by example and be best in class. This certification then helps our customers streamline the procurement process and sets a clear expectation that we prioritise our own internal security.”

Achieving ISO 27001 certification was a company-wide effort, involving a thorough analysis of Cythera’s entire business operations.

“Unlike others who only certify portions of their business, we put everything in scope – sales, technology, tools, and platforms,” explains Ben Cuthbert, Cythera’s Co-Founder and Services Director, “We mapped policies and controls to cover the entire scope and then enforced them as a standard, subjecting ourselves to multiple external audits.”

The certification process was not without its challenges. Cuthbert notes, “The real challenge lies in getting the whole organisation’s tooling, people, processes, and controls up to the same standard. It’s easy to get a team or part of the organisation up to a level, but achieving consistency across the whole company is where organisations will struggle the most.”

Cythera’s ISO 27001 certification provides numerous benefits to its customers, “It builds standards in safeguarding information and continuously uplifts those standards, meaning our customers are continually in safe hands,” says Tim Sank, Co-Founder and Cythera Sales Director, “It also sets consistency and quality of outcomes for our customers’ security response, demonstrating best practices in cyber that are externally audited.”

Enhanced MDR Service Sets Cythera Apart

In addition to achieving ISO 27001 certification, Cythera has made significant investments in its MDR service. These enhancements include major advancements in automation capabilities, enabling streamlined operations and faster incident response powered by an onshore team of Australian-based cybersecurity experts.

“We’ve opened up our automation capabilities to our customers,” explains Cuthbert, “If we detect a threat, we can now take immediate action, such as disabling an account, containing a machine while we do forensics, or reaching out to firewalls to block IP ranges.”

Cythera’s MDR service stands out from standard MDR technology products due to its personalised approach and human expertise. “Our service is entirely onshore staffed, not outsourced,” emphasises Joyce, “Each account has a named lead analyst, providing a personal touch and demonstrating deep domain knowledge. We ensure this context is rolled into our service, so we’re aware of all the moving parts of their business.”

Furthermore, Cythera’s MDR service offers complete transparency, allowing customers to see their 24/7 security operation live, with the capability to report to the Executive Team in real-time.

“Everything is recorded, and there’s nowhere to hide, and we serve up security information to our customers’ key stakeholders at a moment’s notice,” says Sank, “Our service is also expansive; it’s not limited to one area. If there’s a problem within a Microsoft environment, for example, we have the skills to address it or redirect services. We check configurations without interrupting the customer.”

Cythera’s enhanced MDR service delivers several key benefits, including improved threat detection, faster response times, and reduced risk.

“It’s a much more collaborative service, rather than an offshore ticketing system,” says Joyce, “Customers get a service where they’re dealing with someone onshore who understands how they work and the commercial environment of our country. They also get access to a team of specialists, regardless of the time of day.”

Real-World Impact

Cythera’s MDR service has already helped numerous customers overcome significant security challenges. “We’ve seen organisations turn on tools like Microsoft Sentinel and realise it’s far more complex than they imagined and that they are at the behest of an offshore inexperienced and rotating support team,” explains Cuthbert, “In actual fact, they need 24/7 coverage and a known analyst team who learns about their company, and that’s where our service comes in. We provide the expertise and support they need to effectively manage their security posture reliably.”

Cythera’s ISO 27001 certification and enhanced MDR service demonstrate its unwavering commitment to cybersecurity excellence. By combining industry-leading standards with cutting-edge technology and human expertise, Cythera is empowering businesses to navigate the complex threat landscape with confidence.

About Cythera:

Cythera is a leading Australian cybersecurity consulting firm specialising in managed security services, endpoint protection, managed detection and response, penetration testing, governance and cybersecurity consulting for the commercial and mid-market sectors. With a heritage of expertise, a commitment to innovation, and a focus on client success, Cythera continues to be a trusted partner in navigating the complexities of the digital security landscape. For more information, visit www.cythera.com.au