Implementation Services

We build it. You review it. Your team runs it from day one.

Choose any product and we'll customise every document to your organisation, industry, and compliance requirements. Delivered in 1–2 weeks. Fixed price. You own everything.

Get Started Browse Products →
Implementation timeline — intake to delivery in 2 weeks

This service exists because we kept hearing the same thing

"We lost a deal because we couldn't answer the security questionnaire"

Your prospect sent a 200-question security assessment. You had nothing documented. The deal went to a competitor who did.

"We have an audit in 90 days and we're starting from zero"

ISO 27001, SOC 2, CMMC — the deadline is real and the documentation doesn't exist yet.

"Our insurer is asking for evidence we don't have"

Cyber insurance renewal requires documented policies, risk assessments, and incident response plans. You have informal practices but nothing written down.

"We bought the toolkit but don't have time to implement it"

You purchased Ridgeline documentation, customised 20%, and the rest is sitting in a folder. You need someone to finish the job.

"We're raising funding and due diligence includes security"

Series A/B investors expect documented security governance. You need to demonstrate maturity without building a team first.

"We just got a contract that requires CMMC / SOC 2 / ISO 27001"

The revenue opportunity is real but contingent on compliance documentation you don't have.

How It Works

Your documentation, customised in 4 steps

1

Intake

You complete a short intake form — company details, industry, which product you need customised, and your compliance requirements. Takes 15–20 minutes — one form captures everything we need.

2

Review & Confirm

We review your questionnaire, confirm scope and pricing, and send a service agreement with your invoice.

3

Build & Customise

We customise every document to your organisation — your industry, tech stack, regulatory context, and risk profile. No generic templates with your name swapped in.

4

Deliver & Revise

Documents delivered to your shared folder with a summary and implementation guidance. You review, send one round of consolidated feedback, and we revise within 5 business days.

Choose Your Scope

Any product. Any scope. Customised to you.

From a single toolkit to a complete security program — pick what you need and we'll do the rest.

Most Popular

Security Program Foundation Toolkit

Essential security program — 15 documents

The governance baseline every organisation needs: core policies, incident response, business continuity, risk management, and vendor oversight — customised to your organisation.

Information Security Policy Acceptable Use Policy Data Classification Policy Access Control Policy Risk Management Policy Incident Response Policy Incident Response Plan BC & DR Plan Vulnerability Management Standard Third-Party Risk Management Policy Vendor Management Policy Change Management Policy Configuration Management Policy Physical Security Policy Security Awareness & Training Policy

$1,997

Fixed price

Get Started →

Toolkit

$2,997

5–40 documents

Focused documentation for a single security domain or compliance requirement — fully customised to your organisation.

Suite

$5,997

41–100+ documents

Comprehensive documentation for a major framework or security function — every document, template, and tool customised.

Program

$8,997

Multi-product bundle

Multiple products bundled into a single engagement — the most comprehensive customisation for organisations building a full security program.

Get Started →

Your time

15–20 min questionnaire captures everything upfront

Payment

Payment in full on agreement signing, before work begins

Delivery

1–2 weeks from completed questionnaire

Four approaches to the same outcome

Big 4 or boutique consulting firm $25,000–$80,000+ 3–6 months · Built from scratch every time · Expertise leaves when they do
Hire a full-time security/compliance person $90,000–$150,000/year 3–6 months to hire · Still needs tools and templates · Ongoing salary
Fractional CISO + documentation build $3,000–$8,000/month 6–12 month engagement · Strategic guidance but you still build the docs
RIDGELINE SERVICES Proven toolkits, expert customisation $1,997–$8,997 1–2 weeks · Refined across hundreds of implementations · You own everything permanently

Every engagement includes

Organisation-Specific Customisation

Documentation tuned to your industry, tech stack, regulatory context, and risk profile. Not generic templates with your name swapped in.

Framework Mapping

Documentation mapped to NIST CSF 2.0 — which cross-maps to ISO 27001, SOC 2, CMMC, CIS Controls, and GDPR.

Editable Source Files

All documents delivered as Word and Excel files. Yours to edit, rebrand, and maintain. No platform lock-in, no subscription.

One Revision Cycle

Review everything at your pace. Send consolidated feedback in one email. We revise and re-deliver within 5 business days.

What changes for your organisation

Before

  • Security questionnaires take days and the answers are vague
  • No documented policies — informal practices only
  • Audit readiness is a guess, not a measurement
  • Board asks about security posture — you have no data
  • Customer due diligence is a scramble every time

After (1–2 weeks later)

  • Security questionnaires answered same-day from documented evidence
  • Professional documentation customised to your organisation
  • Clear picture of where you stand and what to fix next
  • Evidence-based reporting for board and stakeholders
  • Audit-ready documentation with evidence trackers maintained
Typical Engagement

Implementation timeline — 2 weeks

What a typical engagement looks like from intake to delivery.

Day 1Intake form submitted. We review, confirm scope and pricing, and send service agreement + invoice.
Day 2–3Agreement signed, payment received. We already have your questionnaire — work begins immediately.
Day 4–8Documents built, customised to your organisation, and quality-checked against your specific requirements.
Day 9Full document set delivered to your shared folder with summary email and implementation guidance.
Day 10–14You review at your pace. Send consolidated feedback. We revise and re-upload within 5 business days.
1–2 weeksfrom intake to delivery
~2 hourstotal client time required
$1,997–$8,997fixed price, transparent tiers

Quality You Can Verify

See what you're getting before you commit

Download free samples from our public resource library. The documents we customise for you follow the same structure, depth, and professional standard — tailored to your organisation.

Free Assessment Tools → Browse All Products →

The Security Outcome

What your organisation has after delivery

This isn't about receiving a folder of documents. It's about having a functioning security program that answers the questions people actually ask.

Security questionnaires answered same-day

Documented policies, control mappings, and evidence trackers mean your team can respond to customer questionnaires with evidence — not "we're working on it."

Audit-ready documentation structured to the framework

Whether it's ISO 27001, SOC 2, or CMMC — your documentation is structured around what auditors evaluate, with control mappings and evidence workbooks in place.

Board-level reporting with actual data

Risk registers, compliance posture dashboards, and maturity assessments — evidence-based answers to "how's our security program?" instead of qualitative reassurance.

Insurance applications backed by evidence

Documented incident response plans, vulnerability management programs, and risk assessments — the evidence cyber insurers expect, ready when renewal arrives.

Common questions about our services

How is this different from hiring a consultant?

Consultants build custom documentation from scratch — which is why it takes months and costs $25K+. We deploy proven, battle-tested toolkits that we've refined across hundreds of implementations, then customise them to your specific organisation. The result is the same professional standard in weeks instead of months. And you keep the tools — consultants take theirs with them.

Can I have any product customised, or just the Foundation package?

Any live product in our catalogue. Each product is customised in full — every document, template, and tool within it is tailored to your organisation. The Security Program Foundation Toolkit is our most popular option because it covers the full governance baseline, but you can choose any individual product if that's what you need.

How is pricing determined?

Pricing is based on the product tier. Toolkit customisation (5–40 documents) is $2,997. Suite customisation (41–100+ documents) is $5,997. Program customisation (multi-product bundles) is $8,997. The Security Program Foundation Toolkit is $1,997. All pricing is fixed — no hourly billing, no scope creep.

What frameworks do you cover?

ISO 27001:2022, ISO 22301:2019, ISO 31000:2018, NIST CSF 2.0, NIST SP 800-171, CIS Controls v8, SOC 2 (Trust Services Criteria), CMMC 2.0, PCI-DSS 4.0, GDPR, DORA, CCPA, NIST AI RMF 1.0, and OWASP Top 10 for LLM Applications 2025. Most engagements map to 2–4 frameworks simultaneously.

How much of my time does this require?

About 15–20 minutes for the questionnaire (submitted upfront with your enquiry). After you sign and pay, work begins immediately — no additional forms. Then review the documents at your pace and send consolidated feedback in one email. Total: roughly 90 minutes of your time across the whole engagement.

Can you guarantee we'll pass the audit?

No — and anyone who guarantees certification is misleading you. We deliver the documentation set your auditor expects to see, structured to their assessment criteria. Whether you pass depends on implementing the controls, not just documenting them. We give you the roadmap and evidence structure. You execute.

What happens after delivery?

You own everything. Documents are editable Word and Excel files. Review them at your pace, send us one round of consolidated feedback, and we'll revise within 5 business days. After that, you implement and operate independently.

What's your payment structure?

Payment in full on agreement signing, before work begins. This is a productised service with a defined deliverable and fixed price — you're paying for a known outcome, not open-ended consulting hours. We invoice via Stripe — card or bank transfer accepted.

How quickly can you start?

Typical lead time is 1–2 weeks from initial enquiry to engagement kickoff, depending on our current capacity. If you have an urgent deadline, let us know — we prioritise based on certification and audit dates.

Ready to get your documentation customised?

Pick any product, complete the 2-minute intake form, and we'll have your customised documents ready in 1–2 weeks.

Start Your Intake → Questions? Contact Us

Fixed pricing · Transparent tiers · No calls required · You own everything