IT Governance, a global provider of information security and cyber security expertise, has announced it has achieved National Cyber Security Centre (NCSC) certification for its Audit and Review consultancy service.
The Audit and Review service provides an in-depth and detailed evaluation of an organisation’s cyber security posture in relation to its compliance with UK government security objectives, policies, standards and processes, such as the HMG Security Policy Framework (SPF), National Cyber Security Strategy, 10 Steps to Cyber Security, IA Maturity Model (IAMM), and relevant industry or private-sector standards and schemes such as ISO 27001, Cyber Essentials and the PCI DSS.
The NCSC Certified Cyber Security Consultancy scheme is primarily aimed at providing government, public sector and critical national infrastructure (CNI) organisations with consultancy support on a wide and complex range of cyber security issues. The initiative allows private-sector companies to be certified to provide consultancy services to the above-mentioned organisations.
We are similarly pleased to be able to offer cyber security expertise in line with NCSC requirements"
Cyber security expertise
The scheme focuses on certifying consultancy companies rather than individuals and seeks to establish the credentials of cyber security consultancy services providers in delivering high-quality, tailored and expert cyber security advice.
The NCSC works in partnership with the Crown Commercial Service (CCS) to establish a central route for the public sector to procure certified consultancy services. Consultancies registered under the scheme can apply to be listed as an approved supplier to the CCS.
Alan Calder, the founder and executive chairman of IT Governance, said: “We are delighted to announce IT Governance’s NCSC certification for our Audit and Review consultancy service, and we are proud to have a proven track record of delivering cyber security consultancy services. We are similarly pleased to be able to offer cyber security expertise in line with NCSC requirements.”
Cyber security risk management
IT Governance can help organisations improve their cyber security posture and meet legal and regulatory requirements through a wide range of cyber security consultancy services, including cyber security risk assessment, cyber security risk management, cyber health check, technical assurance, and Cloud security compliance.
Having a strong background in ISO 27001, the General Data Protection Regulation (GDPR) and cyber security, combined with wide-ranging experience working with both the private and public sectors, IT Governance is well positioned to deliver guidance and support to meet the UK government’s requirements.
As a leading authority on ISO 27001, the standard for information security management systems (ISMS), and the GDPR, IT Governance offers a wide range of resources and guidance on its website.