CYBER SECURITY DEFENCE CONSULTANTS LIMITED

Cyberbit Live Fire Exercises

The platform provides individuals or teams of up to 12 persons working together to analyse a simulated attack in a variety of virtual networks using industry standrad tools such as Splunk Enterprise Security Edition, Palo Alto firewalls etc.

Features

• Hyper Realistic scenarios to build SOC readiness
• Learn on the actual security tools used within the organisation
• Learning to respond on commercial SEIM, Firewall, EDR, Antivirus, SOR
• Red Team and Blue Team Exercises

Benefits

• Develop SOC cyber battle ‘muscle memory.’
• Build SOC teamwork skills
• Decision making within pressurised environment
• Incident Response experience on real commercial tools
• Develop incident response playbooks
• Soft skill development
• Communication

£4,365 to £4,365 a unit

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@cybersecuritydefence.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

458971433141149

Contact

Andy Huffer
01223 421577
info@cybersecuritydefence.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: No
• System requirements:
  • Access requires Internet service, a standard HTML browser, keyboard
  • Mouse, screen. No agents or downloads are required.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 2 Service Hours for issues classified as High Severity.; ; Within 4 Service Hours for issues classified as Medium Severity.; ; Within 24 Service Hours for issues classified as Low Severity.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: A chat tag is available on the right hand side of the browser screen.
• Web chat accessibility testing: We support all sorts of technical questions in the units, provide assitance with technical difficulties accessing and using the system and manage any suggestions.
• Onsite support: Onsite support
• Support levels: Tier 1 support, takes care of live chat in tickets, Tier 2 Cloudops for any in-depth issues or infrastructure, Tier 3 developers in case any fix / requests needs further code change.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: A Customer Success Manager is assigned and leads the onboarding process. There is online training within the platform and documentation.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Comma Separated text downloads.
• End-of-contract process: Cyberbit will engage with the customer 6 months before the end of contract to discuss renewal options.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Web based applications
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: "Web Browser:; Chrome; Safari; Microsoft Edge; Firefox"
• API: No
• Customisation available: Yes
• Description of customisation: N/A However working is ongoing to introduce live-fire creation and customisation by subscribers via authorised licence keys.

Scaling

• Independence of resources: Each training exercise is running on a dedicated instance that is created for the training session

Analytics

• Service usage metrics: Yes
• Metrics types: The assigned managers can get all the training history of each of the trainees including a detailed report and score for each completed exercise.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Cyber Security Defence Consultants Ltd

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: No
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Comma Separated text downloads.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Other
• Other protection within supplier network: Upon request

Availability and resilience

• Guaranteed availability: SLA for availability is 99.5%. ; The Support Ticket’s severity will be determined by Cyberbit’s support team who will assess the severity of the matter for which the Support Ticket was opened based on its impact on the use of the Product.
• Approach to resilience: Serverless architecture deployed on AWS infrastructure to provide maximum scale and redundancy.
• Outage reporting: Is handled by customer success manager.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: They enter their credentials at the logon prompt in the service browser landing page.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: SSI
• ISO/IEC 27001 accreditation date: 06/10/2019
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Top management will implement and maintain this Security Policy, as well as the procedures and policies required to support Security Policy.; All employees are educated in information security principles and are responsible and accountable for information.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: All change requests are logged as a ticket in the JIRA. After review and prioritization, the relevant change code/script is developed. Each change goes through testing in QA and pre-prod environment before being approved for Prod.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: "Cyberbit uses set of tools and 3rd party services for finding vulnerabilities in the application and 3rd parties.; Each vulnerability is assigned with criticality level and remediated within the relevant timeframe for the vulnerability criticality level.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: "Cyberbit employs several levels of logging and monitoring from user level to system level. In each of those levels there are rules for detecting anomalous behaviour. ; Cyberbit will notify the Customer of any Personal Data breach affecting the Customer
• Incident management type: Supplier-defined controls
• Incident management approach: Each incident is tracked by senior management. All actions and activities done as part of the investigation and resolution are logged in the incident summary report.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Cyberbit recognizes the critical importance of a healthy environment for a global society, the economy, our business, and our people. As a company committed to good corporate citizenship, we aim to manage and utilize resources in a way that promotes a sustainability. ; ; We prioritize suppliers who share our commitment to ESG principles, including; environmentally responsible practices and ethical conduct. By collaborating with suppliers who prioritize carbon neutrality and sustainable practices.

  Equal opportunity

  In line with our commitment to social responsibility, we actively engage in community initiatives and promote a culture of volunteering within our organization. We encourage our employees to actively participate in volunteer activities. ; ; Our human capital is the most valuable asset we have. We embrace and encourage our; employees’ differences in age, colour, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political.

  Wellbeing

  We prioritize the health, safety, and well-being of our employees and provide a safe and healthy work environment. This includes for example sport lessons which we provide our employees at the workplace, to enable them to easily workout.

Pricing

• Price: £4,365 to £4,365 a unit
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Upon request

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@cybersecuritydefence.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.