This level defines the design, architecture, and dimensioning of technological solutions in order to secure a defense capability against cyber-attacks, as well as establishing the main elements of information and communication to the organization's employees, in a context of awareness and training. Consulting services at the perimeter level, network segregation and segmentation, endpoint security, patch management & configuration management are examples of some of the operation areas.

There are a set of services that establish a starting point for the operationalization of security solutions and services. In addition, employees begin to be involved in contacting information in the field of security, with decision-makers having a key involvement in creating a process that ensures the security of their business, but also that the investment meets the priorities that the business lays down.