CYBERCX UK LTD

CISO as a Service (CISOaaS)

This service involves the provision of strategic counsel for organisations new to cyber security obligations, or with CISO vacancy. The CISOaaS would provide experienced leadership, governance and programme management dedicated to cyber security. Our CISOs are both digital and business natives, who are focused on effectively and efficiently managing risk.

Features

• Prioritising cybersecurity initiatives based on organisational needs.
• Providing analysis of security implications of business priorities.
• Advocating on cyber security matters to Executive Leadership.
• Provide ongoing advice, guidance and oversight of cyber security activities.
• Developing budgets and advising on spending for cybersecurity.
• Monitoring and steering of cyber related programmes of work.
• Providing advice on the day-to-day activities undertaken by IT teams.
• Support coordination of cyber security projects and uplift activities.
• Advice on the day-to-day activities undertaken by IT teams .
• Monitoring and steering of cyber related programmes of work.

Benefits

• Enhanced management of cyber security uplift programmes.
• A single point of contact for cyber security leadership.
• Enable senior leadership buy-in.
• Support for partner and vendor negotiations and advisory.

£810 to £2,500 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at philip.mason@cybercx.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

468267271384070

Contact

Philip.mason@cybercx.com
07990553832
philip.mason@cybercx.com

Planning

• Planning service: Yes
• How the planning service works: We can provide cyber security and information security advice in relation to the setup or migration of cloud hosting and software. The vCISO will provide assistance throughout the project to help maintain compliance and advise on any security concerns.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Other
• Other security testing certifications:
  • GIAC Penetration Tester
  • Certified Information Systems Security Manager (CISSM)
  • CISP
  • Certified Ethical Hacker

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: N/A

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 9 to 5 (UK time), Monday to Friday
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Telephone, email and onsite support as required.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 24/03/2023
• What the ISO/IEC 27001 doesn’t cover: None - all requirements of the ISO27001 Certification covers our UK sites, services and personnel.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • ISO9001
  • ISO22301

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  CyberCX promotes a sustainable future for business, society, and the environment. CyberCX recognises the impact that Environmental, Social, and Governance (ESG) matters may have on the performance of its business. CyberCX’s goal is to embed social and environmental considerations into the heart of our business in ways that create value for our company and stakeholders. As well as our own ambition to reduce our carbon footprint, working with our customers and suppliers we aim to contribute to reduce global greenhouse gas emissions through continuing to develop remote solutions for our customers. CyberCX shall use commercially reasonable efforts to identify and consider material ESG issues in its operating model and its business activities. By taking a responsible and sustainable approach to how it carries on business, CyberCX believes it can better align the objectives of CyberCX, its customers and stakeholders with the broader objectives of society. CyberCX believes fighting climate change benefits ourselves operationally, as well as our employees, shareholders and the wider community.

  Equal opportunity

  CyberCX is an equal opportunity employer and, as part of the Equality Act 2010, treats everyone equally irrespective of; sex, sexual orientation, gender reassignment, marital or civil partnership status, pregnancy or maternity, age, disability, ethnicity, race, nationality, national origin, religion or belief. To support this, CyberCX has deployed a range of policies and initiatives aimed at demonstrating and ensuring our commitment to equal opportunity and a workplace free from discrimination, bullying or harassment. We want to create an environment where all colleagues feel psychologically, emotionally, and physically safe to be authentic, representative of the world they live in, share their personal experiences and have equal opportunity to achieve. As part of our diversity and equal opportunity policies and processes, CyberCX does not require team members to report on their ethnicity or culture. CyberCX is for EVERYONE is a program that covers LGBTIQ+, Women in Cyber, Multiculturalism, Neurodiversity, Reconciliation, and Defence Community. In addition, our Women in Cyber Program that aims to lift the diversity of the cyber security industry by encouraging higher participation rates for women. CyberCX is committed to growing the number of Women in the cyber security industry by:• Promoting the uptake of women entering, continuing, and leading in Australia’s security industry. • Supporting women on their career journey, and inspiring women to pursue a career in security. • Helping build the Australian pipeline of talented security professionals. • Since 2020, CyberCX has been a platinum partner of the Australian Woman in Security Network (AWSN), an industry professional membership body and advocacy group which promotes women in cyber security. • CyberCX is also a major sponsor of both the Australian Women in Security Awards and the New Zealand Women in Security Awards.

  Wellbeing

  Cyber has a responsibility to our employees and the communities we work within to lead in advancing the mental and physical wellbeing agenda. CyberCX aim to create and promote a culture based on trust, support and mutual respect within the workplace, where employees are able to talk openly about their job and mental health problems and to report difficulties without fear of discrimination or reprisal. ; ; CyberCX offers all employees a selection of benefits to help improve Health & Wellbeing such as: ; ; • Employee Assistance Program; • Health Insurance & Discounts ; • Annual Flu Vaccinations; • Mental Wellness Leave; • Seasonal initiatives such as Virgin Pulse GO; • Apps including Mindfulness; • Virtual Gym Classes.; ; CyberCX proudly support individual needs where practical and ensure we adapt to emergency domestic situations with compassion and pragmatism.

Pricing

• Price: £810 to £2,500 a unit a day
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at philip.mason@cybercx.com. Tell them what format you need. It will help if you say what assistive technology you use.