Certified Cyber Security Consultancy: Policy and Standards

 

This cyber security consultancy is aligned with the requirements of the CESG’s Certified Cyber Security Consultancy Scheme (CCSC).

The new scheme replaces the former CESG Listed Advisor Scheme (CLAS).

The design, development and implementation of appropriate policies and procedures are essential for demonstrating compliance with key standards and regulatory requirements. This bespoke consultancy service enables organisations to comply with the UK Government’s stringent security requirements.

 

What can you expect from this consultancy service?

IT Governance can assist you in the development of the required documentation according to the UK Government’s requirements for advanced cyber security. Our experienced advisors have many years’ experience developing and implementing documented processes and procedures that can be used to achieve heightened levels of cyber security in any organisation.

Following an assessment of your business requirements, our cyber security experts will:

  • Create, maintain and update the necessary information security policies and standards;

  • Take account of new threats, legislation, best practice and regulatory requirements;

  • Incorporate industry best practice to ensure the latest policies and procedures are in place;

  • Apply the necessary analysis to align the policies with your business objectives;

  • Accurately reflect your senior management’s intent with respect to information assurance and information security.

IT Governance consultants draw on recognised industry standards such as the following to develop the relevant documentation:

  • ISO 27000 family of standards
  • HMG Security Policy Framework (SPF1)
  • PCI DSS

 

Further advice and support

IT Governance can also provide advice on the interpretation of policy and standards, and undertake a gap analysis to uncover shortfalls against relevant external policies, standards and guidelines. The service can be extended to deliver remedial action and implement the necessary activities where appropriate.

 

Why IT Governance?

With a strong background in ISO 27001 and cyber security, combined with extensive expertise in dealing with the private and public sector, IT Governance is well placed to deliver the guidance and support required to meet the stringent requirements laid out by the UK Government for information security and assurance. Read more about us here.

Contact one of our key account managers today to get incisive advice about and support conducting a cyber security risk assessment by calling us on 00 800 48 484 484 or emailing clientservices-eu@grcsolutions.io.