Structured Workshop · Scored Report · Remediation Roadmap

Request a Sovereignty
Assessment

A structured assessment workshop with your CTO and CISO team, scoring your infrastructure against 60+ controls across 9 categories. You receive a detailed report with gap analysis, risk prioritisation, and a concrete remediation roadmap.

Request Assessment How It Works
Process

What Happens During an Assessment

The assessment is a structured, evidence-based workshop — not a questionnaire. Our engineers work through each control category with your technical leadership to produce an objective score.

1

Pre-Assessment Briefing

Before the workshop, we review your current infrastructure documentation, architecture diagrams, and vendor contracts. This allows us to focus workshop time on verification and gap analysis rather than discovery.

Duration: 30-60 minutes (remote call)

2

Assessment Workshop

A structured 2-4 hour session where we work through all 9 categories and 60+ controls with your team. Each control is scored with supporting evidence. We identify gaps, document risks, and discuss remediation options in real time.

Duration: 2-4 hours (on-site or remote)

3

Scored Report Delivery

Within 5 business days, you receive a comprehensive sovereignty report: composite score, per-category breakdowns, individual control scores, gap analysis, and risk-prioritised remediation recommendations with estimated effort.

Delivery: 5 business days after workshop

4

Remediation Roadmap Review

A follow-up session to walk through the report findings, answer questions, and refine the remediation roadmap based on your organisation's priorities, budget, and timeline constraints.

Duration: 60 minutes (remote call)

Deliverables

What You Receive

The assessment produces a structured, actionable report — not a slide deck with generic recommendations. Every finding is tied to a specific control, scored objectively, and accompanied by a concrete remediation path.

  • Composite sovereignty score — single 0-100 score representing your overall posture
  • Per-category breakdown — individual scores for all 9 categories with weighted contribution
  • Control-level detail — Yes/Partial/No score for each of the 60+ controls with evidence notes
  • Gap analysis — identified sovereignty gaps ranked by risk severity and remediation effort
  • Remediation roadmap — prioritised action items with estimated effort, cost impact, and timeline
  • Benchmark comparison — how your score compares to typical deployments in your sector
  • Executive summary — board-ready overview suitable for presenting to non-technical leadership

Example Report Sections

Composite Score 67 / 100
Operational Control 18 / 20
Data Sovereignty 8 / 20
Security Sovereignty 10 / 15
Survivability 9 / 15
Critical Gaps Found 7
Remediation Items 14

Example output for a typical hybrid cloud deployment in the financial services sector.

Preparation

Who Should Attend and How to Prepare

Who Should Attend

The assessment requires participants who can answer detailed questions about infrastructure architecture, security controls, vendor contracts, and operational procedures. The ideal workshop group includes:

  • CTO or VP Engineering — overall architecture decisions and technology strategy
  • CISO or Head of Security — security controls, encryption, incident response, compliance
  • Infrastructure Lead / Platform Engineer — hands-on knowledge of the deployed stack
  • Procurement or Vendor Manager — contract terms, vendor relationships, cost structures
  • Legal or Compliance Officer — jurisdictional exposure, regulatory requirements, DPAs

Not all roles are mandatory. The minimum effective group is CTO + CISO + Infrastructure Lead.

How to Prepare

No advance preparation is strictly required, but having the following materials available will significantly improve the depth and accuracy of the assessment:

  • Infrastructure architecture diagram — current deployment topology including all vendors and services
  • Vendor contract summaries — key terms for primary infrastructure vendors (termination, data handling, governing law)
  • Data residency documentation — where data is stored, backed up, and replicated
  • Software inventory — list of core infrastructure components with licence types
  • Security documentation — encryption approach, key management, incident response plan
  • Compliance certifications — current audit reports, certifications, and regulatory filings

We will provide a detailed preparation checklist after you submit your assessment request.

Request Assessment

Start Your Assessment

Direct Contact

Reach Us Directly

Email
info@digitalsovereigntysolutions.com
🇳🇱

Digital Sovereignty Solutions

CloudToko B.V. — The Hague, Netherlands

What Happens Next

  1. 1. We review your submission and respond within one business day
  2. 2. Brief pre-assessment call to scope the workshop and share the preparation checklist
  3. 3. Assessment workshop scheduled at a time that suits your team
  4. 4. Scored report delivered within 5 business days of the workshop

Assessment Scope

9
Categories
60+
Controls
2-4h
Workshop
5 days
Report Delivery