Sensitive government and citizen information have always needed protection in accordance with their level of classification and in line with prevailing legislation. With the ever-growing and often persistent threat from cyberspace, the task of keeping information safe is becoming more complex, costly and time-consuming. Add to this the pressure of diminishing budgets, and life in the corridors of power can be daunting.
Whether you are implementing the principles of the Security Policy Framework, aligning to the minimum cyber security standards (based on the NIST cyber security framework), or designing systems and processes to handle sensitive information, you need to be on top of your game. And if you are selecting suppliers, you need to check they are on top of their game too.
You need to understand your risk appetite, assess and manage your risks by choosing and implementing appropriate controls, and then measure, monitor and improve.
Ascentor specialises in bespoke advice to public sector organisations and departments that have very high-value and sensitive information assets. Our highly qualified, NCSC (CESG) Certified Professional (CCP) consultants have backgrounds in complex and high-threat government security and extensive experience in a variety of cyber security and Information Assurance (IA) disciplines including risk management, accreditation, IA architecture, audit, Building Information Modelling (BIM) and business continuity/disaster recovery.
For those of you well on your cyber and information security journey, we can guide your strategy and implementation initiatives to improve your cyber security posture. For government projects, we offer expert advice and guidance on risk assessment, architecture and technical security requirements, accreditation, and supplier selection. For the MoD, we are well-versed in mapping the principals of Secure by Design to CADMID and the system engineering process. If you are just setting out on your journey, our education workshops and cyber assessment activities will help you on your way. And if you want to be compliant with a standard (for example, ISO 27001, ISO 22301, NIST CSF/RMF or NIST 800-53/171), we have a portfolio of services to choose from.
You can buy Ascentor’s services directly through G-Cloud 13 and Digital Outcomes and Specialists (DOS) 6.
We have partners on the NCSC Assured Cyber Security Consultancy Framework.