CYBERSYCURE LTD

Secure by Design (SbD) service

Incorporate effective cybersecurity practices into digital delivery by providing project teams and security professionals with the necessary guidance, tools, and frameworks. This approach emphasises risk-driven activities, clarity on roles and responsibilities, and practical guidance to achieve outcomes aligned with the Cyber Assessment Framework (CAF) as part of GovAssure.

Features

• Risk-driven activities for building appropriate and proportionate cybersecurity controls.
• Define RACI to continuously manage security risks and improve security.
• Practical guidance and tools to achieve CAF outcomes.
• Self-assessment tool for use in the spend controls approval process.
• Track adoption of cybersecurity principles throughout the lifecycle.

Benefits

• Consultants with practical SbD tool implementation in government.
• Developed SbD tool endorsed by Cabinet Office across government.
• Tailored cybersecurity approach enhances resilience against evolving threats.
• Reduced risk exposure and minimised likelihood of cyberattacks and breaches.
• Enhanced compliance with industry standards (NIST, CAF) and regulatory requirements.
• Improved security culture and efficiency in resource allocation.
• Increased trust, and confidence with streamlined processes and continuous improvement.
• Ensure solutions are architected and aligned to industry best practice
• Cost savings by addressing security concerns early and avoiding costs.
• UK Cleared Staff (SC)

£650.00 to £1,700.00 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tahir@cybersycure.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

264885060802948

Contact

Tahir Hussain
07958122224
tahir@cybersycure.co.uk

Planning

• Planning service: Yes
• How the planning service works: Requirements Analysis: We work closely with your development teams to understand project requirements and identify opportunities to integrate security from the outset.; Security Framework Selection: Based on project requirements and industry best practices, we select appropriate security frameworks and standards (e.g., NIST CSF, NIST SP800-53, CAF, CIS, CSA, OWASP, BSIMM) to guide the SbD process.; Training and Awareness: We provide training and awareness sessions to project teams, ensuring understanding of security principles and best practices throughout the development lifecycle.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: We provide tailored training for out clients needs around the development and deployment of SbD. We can also provide training of the tool that we will handover to you if required.
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Process Integration: We assist in integrating security practices into your existing development processes, ensuring that security considerations are addressed at each stage of the lifecycle.; Tooling Selection: We help select and implement appropriate security tools and technologies to support SbD efforts, such as vulnerability scanners, static code analysis tools, security testing frameworks, and secure coding libraries.; Continuous Improvement: Our consultants provide ongoing support and guidance to project teams, facilitating continuous improvement of SbD practices through feedback, monitoring, and evaluation.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security risk management
  • Cyber security consultancy
  • Security audit services
  • Other
• Other security services:
  • SbD Principle adherence and adoption
  • Tool to automate deployment of SbD

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: None

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Depends on service and would be willing to discuss with the client to identify and formulate SLAs that align to their expectations.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Depends on service and would be willing to discuss with the client to identify and formulate SLAs that align to their expectations.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • CISSP
  • CISM
  • TOGAF
  • OSCP
  • ISO27001 Lead Auditor
  • CISA
  • GDPR Practitioner

Social Value

• Social Value:

  Social Value

  • Equal opportunity
  • Wellbeing

  Equal opportunity

  We are committed to ensuring that everyone has an equal opportunity to succeed, irrespective of factors such as race, gender, age, or socioeconomic status. Through fair and inclusive hiring practices, mentorship programs, and career development initiatives, we strive to create a level playing field where talent and merit are the only criteria for advancement.

  Wellbeing

  We prioritise the holistic wellbeing of our employees, recognising that true success stems from a balance of physical, mental, and emotional health. Through initiatives such as flexible work arrangements and access to mental health resources, we support our team members in achieving optimal wellbeing and work-life harmony.

Pricing

• Price: £650.00 to £1,700.00 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tahir@cybersycure.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.