Central Government

Government security in a changing landscape.

*** Our MySecurityManager offers a virtual solution in addition to our usual services, to allow the continuity of vital government information security, data protection and digital transformation projects. ***

The demands on government, non-governmental bodies and their third party commercial suppliers to prove information is appropriately secured are increasing. Any system carrying, storing or transmitting protectively marked data requires an appropriate technology and information risk management process to be carried out. This is to ensure that proportionate security controls have been applied to safeguard the system’s information assets and provide assurance to Accreditors and other key stakeholders.

In a changing Government security landscape, individuals who create and process data and documents must understand how that data should be marked and protected and implement agile, pragmatic and proportionate risk managed controls throughout its lifecycle. Wherever there is a need for authoritative, expert advice on implementing risk management methodologies, policy or how to mark, process, handle and dispose of data in line with the GCS, our CESG Certified Professional (CCP) certified Consultants can help. Our deep industry experience and links within Government and Cabinet Office, NCSC and the wider IA community, combined with our full spectrum of independent Accreditation and Risk Management services offers our clients an unrivalled and compelling proposition for your cyber security needs. Advent IM Digital Transformation for Government

As an established cyber security consultancy, we have years of experience in providing information assurance advice to government and third party commercial suppliers in line with best practice, HMG Policy and Standards and the Security Policy Framework, and our CCP Consultants have a 100% record in successful system accreditations.

HMG Technology & Information Risk Management and Assurance Consultancy services include:

  • Digital Transformation projects
  • Specialists in System Assurance (from a CCP)
  • Digital transformation assurance services
  • Range of outsourced roles (contact us for details)
  • Application of current and legacy IA Assurance Methodologies
  • Risk Management, Risk Assessment & Risk Treatment following guidance including ISO27005, ISO31000, ISO27002 and IAS1&2 (where still used)
  • Security Architecture System Designs and Reviews
  • Digital and Cloud Security Services
  • IA Audits and Reviews including RMADS (where still used), Security Policy Framework (SPF) Compliance
  • IA Incident Management
  • IA Policy & Standards Advice and Guidance, including policy development and reviews
  • Advice on Off-shoring Data
  • System Decommissioning Services
  • Codes of Connection Reviews e.g. PSN, PSN(P), NHSMail2
  • Privacy Impact Assessments
  • Red Teaming

 

Red Teaming for Government is now available to procure directly on G-Cloud.  …along with our other services

 

Training

  • Senior Information Risk Owner (SIRO)
  • Information Asset Owner (IAO)
  • Data Protection
  • Bespoke on application

From our Blog

PODCAST: Government Digital Transformation, are we nearly there yet?

We are a decade on from ‘Tell us once’ – the Government service that was supposed to allow users to literally tell Government just once about a change in their lives and that would then be reflected through all the services they use or need. In this episode, we ask the pesky question from from […]

Find out more about our work in the government sector.