ATKINSRÉALIS UK LIMITED

Cyber Security – Security Compliance

Our cyber security domain expertise helps our clients identify and measure their level of compliance with globally recognised security standards and regulatory requirements, such as ISO27001, the General Data Protection Regulation (GDPR), the Security of Network & Information Systems Regulations (NIS-R), NIST CSF / 800 series, and ISA62443.

Features

• Compliance Advisory
• Information Assurance
• Supply Chain Assurance
• Regulatory Compliance
• Cyber Essentials
• CAF Assessments
• Security Strategy
• Maturity Assessments
• Audits

Benefits

• A deep understanding of the digital ecosystem supporting critical infrastructure.
• Experience in secure and mission-critical environments.
• UK National Security sector’s largest supplier of client-side advisory.
• We are an accredited Cyber Supplier to UK Government.

£600 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ccs@atkinsrealis.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

298494860385221

Contact

Martin Yeoman
+44 1372 75 2023
ccs@atkinsrealis.com

Planning

• Planning service: Yes
• How the planning service works: AtkinsRéalis has been a leading supplier of Information Security and Cyber Resilience services to the UK Government for many years. We recognise the importance of a pro-active and cost-effective Information Assurance process that gives your organisation and your stakeholders confidence in your security doctrine and its application within your business and supply chain. ; ; Our cyber security domain expertise enables us to help our clients identify and measure their level of compliance with globally recognised security standards and regulatory requirements, such as ISO27001, the General Data Protection Regulation (GDPR), the Security of Network & Information Systems Regulations (NIS-R), NIST CSF / 800 series, and ISA62443. ; ; Most Importantly, we document our results and recommendations in customer orientated language that avoids technical jargon, to allow your business to rapidly ascertain and implement compliance requirements and develop and deliver improvement plans. ; ; Our compliance teams are standing by to help you embed the right level of compliance controls to ensure that your security posture is both correct and ready to mature as cyber resilience becomes part of your business-as-usual activities.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: Our Cyber Security Academy is fully equipped to train our client staff in cyber resilience from basic awareness training, though to technical design and managed services. We offer several interchangeable off-the-shelf modules as well as retaining the capacity to develop client bespoke training solutions. Our trainers are our consultants, who offer real-world insight and practical examples of how to implement cyber security within your role or organisation and address the challenges of operating securely in a digitally hosted environment.
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: All clouds are not equal, and dependent on the criticality of the data being migrated several different cloud solutions can be considered. We help our clients to understand how they use their data, and its criticality to business continuity, and through this joint exploration, we can advise which types of cloud solution best meet your needs and focus the security requirements of the cloud design to protect your organisations operations and provide cyber resilience.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: All of our security consulting services and architecture designs are peer reviewed and assessed though our Technical Assurance processes to ensure they are both fit-for-purpose and technically secure. Our team of Technical Authorities are our highest qualified security professionals with a minimum of 10 years’ experience in the design and implementation of security solutions. Where required, our technical consultants can test implemented security solutions, including software security assurance, and often work in close conjunction with client stakeholders and government penetration-testers.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Policy & Framework Development
  • Technical Design Assurance
  • Target Operating Models
  • Cyber Security Training
  • SOC/SIEM Integration
  • IA Managed Services
  • Cyber Threat Intelligence
  • Risk Assessments
  • Secure by Design
  • Human Factors Assessments
• Certified security testers: No

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: Our service is consultant based only.

User support

• Email or online ticketing support: No
• Phone support: No
• Web chat support: No
• Support levels: N/A

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Lloyd's Register Quality Assurance Limited
• ISO/IEC 27001 accreditation date: 06/04/2024
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  AtkinsRéalis are committed to achieving social value on everything we deliver. Everything we do supports our goal of delivering outstanding project outcomes for our clients, but also ensuring that we leave a legacy for our client and their stakeholders, whether it be environmental, social, or economic. As a global organisation working on the world’s biggest Infrastructure, Transport and Energy programmes we always work to ensure that climate change is considered. Tailored commitments will be agreed through the buying process.; ; Sustainability is at the heart of AtkinsRéalis purpose - engineering a better future for our planet and its people. As an organisation we have signed up to the United Nations Framework Convention on Climate Change's (UNFCCC) Race to Zero global campaign and signed the Business Ambition for 1.5oC commitments. We have signed The Climate Pledge, working towards net zero by 2030 and are in the process of setting science-based targets. ; ; We support clients in safeguarding what we do today to enhance the environment and protect future generations from harm, this is fundamental to AtkinsRéalis’ sustainability policy and Sustainable Business Strategy. ; ; We have a series of approaches that we use through the delivery of our cloud projects, including:; ; • Considering whole life carbon when designing systems and assets to minimise carbon.; • Utilising a variety of tools (appropriate to the sector and client) to assess whole life carbon from embodied to in-life to end of life.; • Raising awareness about climate change to stakeholders of the projects to ensure clear understanding.

  Tackling economic inequality

  AtkinsRéalis are committed to achieving social value on everything we deliver. Everything we do supports our goal of delivering outstanding project outcomes for our clients but also ensuring that we leave a legacy for our client and their stakeholders, whether it be environmental, social, or economic. Tailored commitments will be agreed through the buying process.; ; We are committed to creating a healthy future for communities and the wider economy. We do this through creating new businesses, jobs and skills and working with supply chain partners to create capacity and resilience.; ; We recognise some of the digital and cyber skills shortages facing the UK and are actively participating and promoting careers from school age children through to lifelong training. This is often delivered through STEM outreach schemes such as Governors for Schools programme and CyberFirst. This can include upskilling activities delivered by some of our highly skilled professionals ranging from interview and job preparation (e.g., CV support, Mock interviews) through to technical training (e.g., cyber security, digital skillset, STEM-based careers, supply chain engagement). We promote our full-time opportunities to priority groups based on the area of operation. (e.g., people living in regionally and nationally deprived areas /disabled people/ people who are underrepresented in the industry including Women, BAME, LGBT+ etc.).; ; We understand the opportunities a diverse supply chain can bring to complement our overall solution we are providing to our clients, such as innovation, improved productivity, novel or new technologies or niche skillsets. As a large organisation we have a large network of approved suppliers from diverse backgrounds including small and medium enterprises that we can utilise as required. These suppliers go through our due diligence process to ensure they meet our standards (i.e. around cyber security) and we are working with suppliers who share our values.

  Equal opportunity

  AtkinsRéalis are committed to achieving social value on everything we deliver. Everything we do supports our goal of delivering outstanding project outcomes for our clients but also ensuring that we leave a legacy for our client and their stakeholders, whether it be environmental, social, or economic. Tailored commitments will be agreed through the buying process.; ; We have achieved the platinum standard on Cleared Assured Accreditation and are well positioned in its advocacy of ED&I practices. We are committed to creating an inclusive, collaborative culture for all of its employees and sub-contractors and feeding back value directly to our clients. ; ; AtkinsRéalis is a member of Inclusive Employers, a national network of businesses committed to building inclusive workplaces. Our processes have enabled us to create inclusive and diverse teams that will benefit clients with better performance, diversity of thinking and enhanced creativity. We are committed to cultivating a thriving diverse and inclusive work environment, where differences are valued and respected, and all staff are valued, supported, and treated fairly. ; ; Equal opportunity is fundamental to how AtkinsRéalis operates. From the moment a candidate applies to a vacancy of ours, we assess how we can best ensure equality. With this in mind, we are committed to ensuring that we select and recruit the best people for each role based on their ability to do the job, in line with the needs of the business, irrespective of the candidates’ gender identity, marital status, disability, sexual orientation, health, age, race, nationality, religion, employment status, or membership or non-membership of a trade union. We pursue this commitment by having clear and concise procedures and guidelines for HR and line managers to ensure policies are fully understood and implemented.

  Wellbeing

  AtkinsRéalis are committed to achieving social value on everything we deliver. Everything we do supports our goal of delivering outstanding project outcomes for our clients but also ensuring that we leave a legacy for our client and their stakeholders, whether it be environmental, social, or economic. Tailored commitments will be agreed through the buying process.; ; We are passionately committed to changing the way we think about, and deal with mental/ physical health and wellbeing in the workplace. Without a happy, healthy, and energised team we wouldn’t be able to serve our clients in the innovative way we want to and make substantive change like cloud transformation possible. We live by our own values and ensure these are embedded in our delivery. When undertaking our work, we ensure all stakeholders have a safe and open dialogue to talk about health and wellbeing and access appropriate support. ; ; We consider ourselves long term partners with communities, upskilling people and enabling wellbeing benefits over the long term. This can include:; ; • Partnering with local groups and charities to invest in community wellbeing appropriate to the services being delivered. ; • Training our staff to deliver inclusive design in every piece of work to account for those with accessibility issues. ; • Designing with users'’ wellbeing in mind. (Implementing user centered design principles and co-designing with the stakeholders who will use cloud technology.; • Engaging with stakeholders; to raise awareness to address specific wellbeing agendas, such as mental health.

Pricing

• Price: £600 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ccs@atkinsrealis.com. Tell them what format you need. It will help if you say what assistive technology you use.