Certified Cyber Security Consultancy: Cyber Security Information Assurance (IA) Methodologies

 

This cyber security consultancy is aligned with the requirements of the CESG’s Certified Cyber Security Consultancy Scheme (CCSC).

The new scheme replaces the former CESG Listed Advisor Scheme (CLAS), and is suitable for organisations that want to meet the UK Government’s security requirements.

 

What can you expect from this consultancy service?

This consultancy service will help to deliver the required levels of assurance to government and partner organisations that your organisation’s systems, services and products meet the secure standards of the UK Government.

This service provides consultancy support, guidance and advice on:

  • Assessing whether a system, service or product is ‘fit for purpose’ and meets UK Government security requirements;

  • Information assurance frameworks, policies and standards such as the ISO 27000 series, Cyber Essentials, HMG Security Policy Framework (SPF), FIPS, etc.;

  • Assessing the level of assurance provided by a security mechanism, system or product in accordance with one or more recognised methodologies and standards;

  • The implementation of an information security management system (ISMS) such as ISO 27001, incorporating Cyber Essentials requirements;

  • Developing risk assessment and risk treatment plans in accordance with HMG SPF, or a recognised risk management methodology specific to your business sector such as ISO 27005;

  • Legal and regulatory requirements;

  • The accreditation process for information systems, services, processes and products;

  • Developing accreditation documentation, e.g. BIA (business impact analyses) and risk management and accreditation documentation set (RMADS);

  • Providing tailored and informed communications to the SIRO (senior information risk owner), management and stakeholders.

Why IT Governance?

With a strong background in ISO 27001 and cyber security, combined with extensive expertise in dealing with the private and public sector, IT Governance is well placed to deliver the guidance and support required to meet the stringent requirements laid out by the UK Government for information security and assurance. Read more about us here.

Contact one of our key account managers today to get incisive advice about and support conducting a cyber security risk assessment by calling us on 00 800 48 484 484 or emailing clientservices-eu@grcsolutions.io.