We analyse your existing system from top to bottom to provide your risk-based, cost-effective advice.
Albany Technology recommend the right product or design new elements that you might want to build in-house. We have designed bespoke Security Enforcing Functions for the most demanding clients operating in the highest of threat environments. We also have an excellent overview of the latest products and can advise you on what and how to outsource where appropriate.
NCSC Assured Cyber Advisor
Albany Technology is an NCSC-assured Cyber Advisor providing small and medium-sized businesses with reliable and cost-effective cyber security advice and practical support.
Cyber Advisors will initially focus on helping organisations to implement the five Cyber Essentials Technical Controls. This service will be known as Cyber Advisor (Cyber Essentials). The name includes Cyber Essentials in order to differentiate them from any future assured Cyber Advisors assisting small organisations in other areas of cyber security.
The Cyber Essentials standard has been adopted because the NCSC recognises this as a good baseline standard that defends against a range of commonly experienced cyber attacks, including ransomware attacks.
Cyber Advisors Cyber Essentials can help organisations assess the gap between their current cyber security stance, and that achieved by implementing the Cyber Essentials technical controls. This service is tailored towards small and medium sized organisations and the Advisors have all been assessed not just on their technical knowledge, but also their ability to work specifically with small organisations.
With the specific needs of an individual business in mind, Cyber Advisors can provide hands-on support to help the organisation take recommended actions.
An organisation will be helped to meet the Cyber Essentials technical controls, however, they do not necessarily need to be aiming for Cyber Essentials certification. The advice offered by Cyber Advisors will help prepare an organisation should they wish to certify, in which case, they will need to apply through a Cyber Essentials Certification Body.
Cyber Advisors can help organisations by:
- Conducting Cyber Essentials gap analysis to assess the organisations internet-facing IT, identifying where it fails to meet the Cyber Essentials controls
- Developing reports on the status of the organisation’s Cyber Essentials controls i.e. detailing the requirements that are met and those that are not; describing why controls are not met and the risks the organisation is exposed to; recommended actions to take Working with the business to agree remediation activities
- Planning remediation activities that align to the risk and business priorities Implementing remediation activities – or guide technical teams to do so – sympathetically to operational activities
- Developing and presenting post-engagement reports summarising the engagement and detailing any remediation work completed, pointing out any residual risk with recommendations for reducing those risks
Security Policy Framework Compliant Design
Government Departments and those supplying systems to the systems to be accredited according to the Security Policy Framework. We work with defence companies to meet JSP 440, JSP 604 and the SPF requirements.
