Fortis Cyber Security Limited

Information Security Officer as a Service (ISOaaS)

Information Security Officer as a Service (ISOaaS) is a fractional, convenient and cost-effective way for businesses to access industry-leading and best practice cyber security expertise. Working with our professionally certified security consultants enables organisations to benefit from their extensive security knowledge and experience in a flexible and scalable manner.

Features

• Fractional service designed to fit your project or BAU requirements
• Design and implementation of a standardised security framework
• Ensuring compliance with regulatory requirements and security frameworks
• Identification, management and remediation of business security risks
• Maintain currency with security best practice and industry standards
• Information security governance servicies
• Business impact analysis and business continuity planning
• Deliver and assure security awareness training
• Creation and implementation of security policies and procedures
• Incident response capabilities

Benefits

• Access to specialist information security advice and industry experience
• Optimise overall cyber security posture
• Maintain compliance with industry regulations and standards
• Reduce risk of cyber incidents and avoid costly data breaches
• Improve incident response & business continuity capabilities
• Build trust and assurance with customers, partners & stakeholders
• Create foundation for continuous improvement
• Cost effective approach to cyber security
• Tailored level of support aligned to objectives, budget, and timeline

£850.00 to £1,250.00 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt@fortiscyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

689175447849102

Contact

Direct Sales - Matt Leonards
‭020 8158 7564‬
matt@fortiscyber.co.uk

Planning

• Planning service: Yes
• How the planning service works: At Fortis Cyber we work with our customers from the outset to identify the required scope and help them navigate the complexities of implementing information security controls. We provide bespoke support and guidance to ensure the services meet each customer's specific business needs and objectives.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: All training is bespoke and we work with the client to tailor each provision to their individual requirements.
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Fortis Cyber provides additional security assurance services to support customers in setting up or managing their environments and systems. This ensures and assures that the systems are secure.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: Fortis Cyber is an ISO 9001 certified business and delivers quality assurance and performance testing using best practice techniques, policies, processes, and proven assurance testing standards. We work closely with customers to develop a comprehensive test plan and strategy tailored to their specific requirements.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • IASME Cyber Assurance Level 2 Audited Certification
  • NCSC Assured Service Provider Cyber Advisor
  • Cyber Essentials & Cyber Essentials Plus Certification Body
  • IASME Cyber Assurance Certification Body
  • ISO 27001 Lead Auditor and Implementor
  • ISO 9001 Lead Auditor

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: There are no known service constraints

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: For initial enquiries customers should expect a response within 24 hours. During engagements the team is available to respond to queries during standard office hours (Mon-Fri from 9am-5pm) Out of hours support is available by prior arrangement.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: All customers have a dedicated account manager and are also assigned to a specific security testing consultant. In addition customers have direct access to Fortis Cyber's Delivery Manager who is on hand to answer any queries regarding the engagement and ensure continuity of support.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • IASME Cyber Assurance Level 2 Audited Certification
  • NCSC Assured Service Provider Cyber Advisor
  • Cyber Essentials & Cyber Essentials Plus Certification Body
  • IASME Cyber Assurance Certification Body
  • CREST Accreditation - Penetration Testing

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fortis Cyber is committed to environmental sustainability and fighting climate change. Employees are enabled to work from home, cutting down on carbon emissions from commuting. We promote virtual meeting tools to minimise the need for business travel and encourage the use of public transportation when working off site or attending in-person meetings. We utilise digital documentation and communication tools such as electronic signatures, digital contracts, and cloud-based storage solutions to reduce paper consumption and waste. Wherever possible as a company we adopt eco-friendly practices, such as recycling, avoiding single use items, and using renewable energy sources and we encourage all staff to consider their individual impact on climate change.

  Covid-19 recovery

  Fortis Cyber's Covid-19 management policy is in line with current Public Health England guidance.

  Tackling economic inequality

  Fortis Cyber is committed to fair employment practices. We pay fair wages and provide equitable opportunities for advancement within the company with transparent hiring and promotion processes that prioritise merit, skill and aptitude. We provide training and development opportunities to help employees enhance their skills and qualifications and support career advancement and upward mobility within the company. We incorporate principles of equity, diversity, and inclusion into the company's core values, policies and business practices.

  Equal opportunity

  Fortis Cyber is dedicated to achieving a working environment which provides equality of opportunity and freedom from unlawful discrimination. The company is actively committed to opposing all forms of discrimination and removing unfair and discriminatory practices. We aim to provide a service that does not discriminate against our customers and partners in the means by which they can access our services and we endeavour to treat everyone with respect and dignity and avoid discriminating against people either via conscious or unconscious biases.

  Wellbeing

  We offer flexible and remote working opportunities to accommodate employees' personal responsibilities and enable a better work-life balance. We maintain open and transparent communication channels between all staff and encourage employees to seek help when needed. We regularly check in with staff to assess their workload and wellbeing and work with them to address any concerns or challenges they may be facing. We encourage employees to take regular breaks and use their full annual leave entitlement and set clear expectations around working hours to ensure everyone has time to recharge outside of work. We cultivate an inclusive workplace culture where staff feel valued, respected, and empowered to contribute their ideas and we support employees' professional development goals. As a predominantly remote-based organisation we aim to foster a sense of community and belonging among employees through regular online and in-person events.

Pricing

• Price: £850.00 to £1,250.00 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt@fortiscyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.