Alignment, Assurance & Accreditation
The Standard of Certainty

In today’s environment of increasing regulatory scrutiny, organizations need more than checklists, they need clarity, confidence, and credible proof that their security controls actually work.

Forculus offers three complementary services designed to take you from understanding your obligations to demonstrating robust, effective security. Whether you are pursuing ISO 27001 certification, achieving NIS2, DORA, CER, BIO, or operating in high-stakes NATO / EU Classified environments.

Regulatory Alignment → tells you what you need to do.

Security Assurance → verifies that what you have done is actually working.

Accreditation Support → helps you prove it to external auditors and authorities.

These services can be engaged independently or sequentially, depending on your current maturity and objectives.

At Forculus, we pride ourselves on transparency. We publish clear pricing for our standard engagements so you can make informed decisions quickly. All prices are fixed-fee per engagement (unless scope changes significantly).

Don’t leave compliance or accreditation to chance. Contact us today to build a defensible security posture that satisfies regulators, boards, and business partners.

Your Shield in a Complex Regulatory Landscape

SECURE YOUR AAA Certainty

Regulatory Alignment

Understand your obligations and close the gaps

This service maps your current practices against specific regulations and frameworks, identifies gaps in plain operational language, and delivers a practical remediation roadmap.

It is ideal as an entry point for organizations facing new or updated requirements.

What you receive:

Client-specific obligation register in clear language
Current-state assessment with traffic-light compliance status
Prioritized gap closure roadmap with timelines and ownership
Evidence preparation guidance

Security Assurance

Independent verification that your controls are effective

Security Assurance provides an evidence-based review to confirm that your existing controls are operating as intended and are appropriately sized for your risk profile.

It is particularly valuable before major contracts, board presentations, investor discussions, or as part of annual governance hygiene.

What you receive:

Clearly defined assurance scope and criteria
Structured evidence collection and testing
Formal assurance report with findings and ratings
Management response session and final board-ready report

This is our most comprehensive service, supporting organizations through the full journey to certification be it ISO27001 or equivalent formal authorization.

We provide structured guidance on building or strengthening your Information Security Management System (ISMS), available as modular workstreams so you can invest at your own pace.

Key phases include:

Scoping and gap assessment
ISMS build and documentation support
Pre-audit readiness assessment
Audit support during external reviews

Important note: Successful accreditation requires active involvement from your own team. We cannot guarantee the final outcome of an external audit or accreditation decision. That rests with the certifying or accrediting body.

Accreditation Support

Prepare for and successfully achieve formal certification or authorization

Applicable frameworks and regulations include

ISO 27001

NIST

BIO2

ABRO

VIR-BI

NATO

EUCI

NIS2

CER

DORA

GDPR

ISO 27001 NIST BIO2 ABRO VIR-BI NATO EUCI NIS2 CER DORA GDPR

Digital graphic of a padlock with security and compliance icons and text, representing cybersecurity and data protection in a server room.

Transparent Pricing Overview

We believe in upfront clarity. Below are our standard fixed-fee prices for typical mid-sized organizations (approx. 50–150 FTE).

Regulatory Alignment (full four-phase engagement per regulation): €8,400
(Phases 1–2 only: €6,600 | Annual monitoring retainer: €3,600/year)
Security Assurance (full engagement): €6,900 (Standalone assurance report: €3,000)
Accreditation Support (full ISO 27001 engagement, all phases & workstreams): €21,000
(Phases 3 & 4 only: €6,000 | Individual workstreams available from €1,200 each)
Mission Critical add-ons for highly classified environments (such as NATO and EU, applies to any of the three services): typically €15,300 for full Regulatory Alignment or €32,400 for full Accreditation Support, plus travel and on-site days where required (Significant uplift applies due to specialized requirements).

Reach out if you would like more information about the different phases within each service, how they can be engaged individually or together, time investment, and which fee would apply to each.

Digital map of Europe showing illuminated country borders and cities at night, with glowing network lines connecting different regions.

We serve two distinct tiers of organizations: Those seeking to dominate the Commercial & Public Sector through standard frameworks, and those operating in High-Security National Interests requiring the highest level of clearance and isolation.

Mid-sized organizations (typically 50–150+ FTE) in the Netherlands and broader EU
Companies preparing for or maintaining ISO 27001 certification
Organizations subject to NIS2, DORA, BIO or other regulatory requirements
Defense contractors, government suppliers, and entities handling classified information

Who is this for?

Organizations looking for a “quick badge” without investing in genuine security improvements
Purely technical penetration testing or managed security services (out of scope)

These options are not a fit for:

Forculus facilitates strategic alliances to bridge the gap between regulatory demands and operational security resilience.

Board-Ready Logic

Forculus doesn’t just translate regulations. We deliver practical, transparent support grounded in real-world experience with Dutch, EU, and NATO frameworks.
Our fixed-fee model and upfront pricing reflect our commitment to honesty and partnership.
Ready to move from uncertainty to certainty with transparent pricing?