Focuses on assessing cybersecurity posture, auditing against established security frameworks, and evaluating controls related to threat detection, prevention, and response.