CSI Limited

Cyber Security Services

CSI’s advisory service is trusted by UK’s armed forces and government. CSI is a Certified Cyber Security Consultancy of the NCSC
Our consultants help organisations build the right foundations so that they can go on to implement effective, well managed, information and cyber security systems and controls.

Features

• Tailoring strategy to the context of the client organisation
• Identify areas for improvement in existing policy documents
• Risk assessment, and the methodology by which it is performed
• Identify threat vectors that could be exploited by malicious actors
• SOC, SIEM/SOAR, XDR as a Service and Advisory Services
• Endpoint Detection & Response (EDR) Managed Services
• Phishing Defence & Response Services
• User Education & Security Awareness Training
• Cyber Asset Attack Surface Management (CAASM), SAAS Security Posture
• Vulnerability Management, Gap Analysis, Risk Assessments

Benefits

• Setting the foundations for successful delivery
• Assist in creation and enforcement of policies
• Draw from range of best practice sources ISO27005 and NCSC.
• Creating a programme of work to address the threat vectors
• Provide critical insights into potentially malicious activity
• Application of machine learning to identify malicious software
• CSI’s phishing defence solution highlights the problem and solves it
• Help achieve compliance objectives, and maintain compliance going forward.
• Assist organisations discharge their duties against standards such as PCI-DSS

£750 to £1,250 a person a day

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jennifer.billett@csiltd.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

294495916666861

Contact

Jennifer Billett
08001088301
jennifer.billett@csiltd.co.uk

Planning

• Planning service: Yes
• How the planning service works: Stakeholder workshops supporting business consensus and buy-in; Cost Benefit Analysis; Technical planning, informed by analysis of utilization patterns; Workload analysis to define an optimized service operating model; Data analysis and management ensuring effective archiving, deletion and retention; Tailored Risk Assessment and Management methodologies and approaches; Business Continuity Planning; Disaster Recovery planning including Recovery Time and Recovery Point objectives
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Deployment of appropriately qualified staff – PRINCE2, ITIL, TOGAF; Detailed assessment of infrastructure and service readiness; Training Needs Analysis; Internal team training, support and mentoring; Architecture monitoring, management and maintenance; Tailoring of services to the specific customer requirement; Pro-active risk assessment and management; Continuous improvement through review and updates
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: Will be provided as part of the proposal documentation on request

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CHECK
  • CREST
  • Tigerscheme
  • Cyber Scheme

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: Connectivity between multiple clouds, private and public; Increased service performance Secure wire-speed connections Architecture monitoring, management and maintenance; Round the clock support and management of services Optimum levels of system availability First time’ problem solving

Service scope

• Service constraints: N/A

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Request for Information – 4 hour response – whether emailed, phoned or on the Community Restore Request – 2 hour response Critical Restore Request – 1 hour response – must be phoned through Out of Hours – Chargeable for all 10x5 customers – contract hours are 8am – 6pm Monday to Friday Monday – Friday between 6pm – 8am Must phone the Service Desk 6pm – 10pm - £150 per hour All day Saturday - £150 per hour 10pm Saturday – 6am Monday - £200 per hour
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: CSI provide advanced monitoring, reporting and alerting, access to a first, second and third line service desk, through to a fully managed solutions. Most accounts will be allocated a Technical Account Manager

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: AlertLogic, Microsoft, Sentinel, Defender, Blackberry CYLANCE, Fortra, KnowBe4 plus more

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Bureau Veritas
• ISO/IEC 27001 accreditation date: 14/01/2022
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: NCC Group Security Services Limited
• PCI DSS accreditation date: 27/02/2022
• What the PCI DSS doesn’t cover: N/A
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Along with our customers and carefully selected partners, environmental responsibility is extremely important to CSI when making our own decisions on platform choices and system purchases – IT sustainability is also being factored into our choice of sustainable infrastructure for our clients to deliver to their own ESG ambitions. ; ; Data centre consumption of energy, greenhouse gas emissions and managing e-waste are all considerations. The CSI Power10 environment shows considerable reductions in energy consumption to over 50% from our old IBM Power8 estate. The IBM Power10 system have been designed to deliver high performance with a reduced environmental impact. Over 97% of IBM Power server components are reused or recycled at the end of life. ; ; CSI are ISO 14001 accredited. CSI are committed to a programme of management, continuous improvement and reporting of our direct/ indirect impacts, which mark our contribution to improving the world in which we live. ; ; We recognise that our business activities have direct and indirect impacts on the societies in which we operate. We endeavor to manage these in a responsible manner, believing that sound and demonstrable performance in relation to corporate social responsibility policies and practices is a fundamental part of business success. ; ; Examples of our activity in this area are: ; • Webcasts to deliver All Employee meetings to avoid excess travel ; • Turn off all lights and PC monitors at night ; • Corporate functions at venues that support sustainable environments ; • Double sided printing set as default ; • New marketing material produced on material sourced from sustainable sources ; • Support of remote/flexible working – enabled reduction in office space

  Covid-19 recovery

  We are also committed to making a sustainable positive impact on the communities in which we operate. We aim to make a distinctive contribution to inequality and social development through the establishment of effective partnerships and programmes that make the best use of the energies and skills of our employees.; We support our employees in fundraising for charities and voluntary work, recognising both the benefit to the community and to the employees themselves

  Equal opportunity

  CSI aim to provide equal opportunities and avoid discrimination in all aspects of employment and to ensure that the talent and skills of all individuals are maximised. Our approach applies to recruitment, terms and conditions of employment (including pay), appraisals, promotion, disciplinary and grievance procedures and training.; ; The policy applies to employees, officers, agency workers, casual workers, consultants and self-employed contractors.; ; Part-time and fixed-term staff shall be treated the same as comparable full-time or permanent staff and enjoy no less favourable terms and conditions (pro rata where appropriate), unless different treatment is justified.

  Wellbeing

  The Company proactively supports Remote workers who are affected by time management and social isolation issues by:; a) regular one-to-one meetings between remote workers and their line managers; b) regular meetings between remote workers and their co-workers; networking, training, etc.; c) regular visits to their designated office; d) providing access to secure Company resources, e.g. CRM, SharePoint, Concur and BambooHR; e) providing access to Company communication tools such as Microsoft Teams, Microsoft Outlook and Yammer ; f) providing access to helplines for support with software problems and equipment failures; g) providing online meetings or virtual discussion forums; h) including remote workers in social activities, along with company newsletters and updates

Pricing

• Price: £750 to £1,250 a person a day
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jennifer.billett@csiltd.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.