PureCyber

Active Directory Security Assessment

An active directory security assessment allows an organisation to ensure that all the technical controls within this system match corporate policies and the wider cyber security strategy of the business. This allows you to assess if user permissions, passwords and accounts are assigned appropriately and configured securely.

Features

• Assessments conducted by TIGER certified specialists
• Permission review process and reporting
• Complete password and policy audit
• Assessment against permission, user and access controls
• Full reports, delivered securely, detailing vulnerabilities prioritised critical to low
• Identify common group policy misconfigurations
• Understandable and cost-effective service

Benefits

• CREST accredited penetration testing service
• Ensure that technical controls match corporate policies
• Ensure permissions are assigned appropriately
• Review user passwords to identify poor security practices
• Ensure all accounts are protected by multiple authentication checks
• Independent perspective on your management practices
• Intelligence and data to help tighten your internal security controls
• Proactive approach to improving your organisation's security posture

£700 to £1,300 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jon@purecyber.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

463878796304721

Contact

Jonathan Stock
07854972423
jon@purecyber.com

Planning

• Planning service: Yes
• How the planning service works: At PureCyber, we conduct thorough planning with the client to make sure that their requirements for the scope of work are fully understood and met. As long-serving members of the cyber security industry we will help to shape the requirements to meet the customer’s needs in an understandable and affordable manner.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications: Offensive Security

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: You will have access to a dedicated cyber security consultant and project manager who will be able to answer queries regarding your penetration testing requirements.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: You will have access to a dedicated cyber security consultant and project manager who will be able to answer queries regarding your penetration testing requirements.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: You will have access to a dedicated cyber security consultant and project manager who will be able to answer queries regarding your penetration testing requirements.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 05/04/2022
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • CREST Certified Penetration Testing
  • IASME Gold Audited

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  As an organisation, we are focused on fighting climate change by trying to conduct the majority of our work remotely. This encourages all our staff to deliver contractual services to support environmental protection and improvement.

Pricing

• Price: £700 to £1,300 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jon@purecyber.com. Tell them what format you need. It will help if you say what assistive technology you use.