WAVESTONE ADVISORS UK LIMITED

Cyber Security Strategy

Our strategic approach to Cyber Security will evaluate your current maturity baseline. We will identify the target operating model in terms of resilience/response/recovery, security hardening, crisis management, threat hunting, assuring the supply chain and single-pane-of-glass SOC metrics. The outcome is a realistic roadmap to achieve the desired target state

Features

• Governance, operating model and policy frameworks
• Security Risk Assessment and threat exposure, Risk Management
• Compliance, Privacy & Security Assurance (SOx, GDPR, NISD, ISO27001, ISO22301)
• Security design (DLP, Encryption, Endpoints, Cloud, Applications, 3rdparties, SOC/CERT)
• Identity Access Management (JML processes, Recertification, Identity Federation, SSO)
• Fraud & Trust Services (machine-learning eFraud, MFA, eSignature, smartcards)
• Operational Resilience and Recovery (BIA, BCP, DRP, crisis management)
• Security Operations Centre (SOC)
• Cloud security assessments, transformation, risk and monitoring
• Third-Party Security (Stressed exit planning, Cyber Crisis management)

Benefits

• Assess Cyber Security maturity and threat exposure
• Identify and address major business and IT risks
• Understand external threats and adapt defences as necessary
• Implement a sustainable governance & strategy framework
• Identify and select solutions to protect critical systems and networks
• Create a roadmap to support agreed transformation agenda

£550 to £1,950 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ukpublicsector@wavestone.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

136853355940608

Contact

Wavestone
020 3002 1760
ukpublicsector@wavestone.com

Planning

• Planning service: Yes
• How the planning service works: Our Cyber Security Strategy service provides our clients with the expertise to analyse the current Cyber Security baseline, identify a high level design and deployment model to meet the desired future state. We will create a roadmap to move your organisation towards a realistic and sustainable Cyber Security model covering governance, target operating model, policies, remediation and recovery.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: We provide training for the security components of cloud software and cloud hosting services (e.g. access control, hardening, etc.)
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Security crisis management simulation
  • Security awareness
  • Supply chain risk management
  • Resilience and recovery strategy
  • Platforms security and optimisation review
  • Security Operations Centre (SOC)
  • Security Assurance
  • Identity & Access Management
  • Operational Resilience and Recovery
• Certified security testers: Yes
• Security testing certifications: Other
• Other security testing certifications:
  • PASSI (as issued by the French national security agency ANSSI)
  • OSCP
  • GPEN

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: None

User support

• Email or online ticketing support: No
• Phone support: No
• Web chat support: No
• Support levels: N/A

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: LTSI
• ISO/IEC 27001 accreditation date: 01/02/21
• What the ISO/IEC 27001 doesn’t cover: IN OUR ISO/IEC 27001 CERTIFICATION, WE ARE CERTIFIED ONLY FOR THE FOLLOWING: SECURTIY AUDITS INCIDENT RESPONSE SERVICES
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Improved cyber security can help fight climate change through moving to more sustainable facilities. The process of moving to cloud can also identify opportunities to streamline technology needs and reduce the overall hardware requirements, also positively impacting sustainability

  Covid-19 recovery

  New ways of working driven by covid-19 recovery often deliver improved ways of working for employees or improved contact points for customers, both of which are in support of different working styles and improved mental and physical health. These require an improved approach to cyber security given the fundamental shift from older approached

  Tackling economic inequality

  Updated cyber security can create new requirements for the organisation based on a shift in the IT operating model, leading to opportunities for skills change and possible new roles. It also supports development of new services and capabilities from cloud providers which can lead to new jobs and skills

  Equal opportunity

  In support of our equal opportunities policy all of our projects make use of our diverse community of employees. We always look for opportunities to engage with our customers around multiple topics, including where we can share learning and good practice in areas such as equality and equal opportunities

  Wellbeing

  Improved cyber security supports improved ways of working for employees, supporting different working styles which help with both physical and mental health. In addition, the ability of cloud to enable remote working helps to build more diverse project and organisational communities through equal access to services and communications

Pricing

• Price: £550 to £1,950 a unit a day
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ukpublicsector@wavestone.com. Tell them what format you need. It will help if you say what assistive technology you use.