AGILITY CYBER LIMITED

Hardware / Internet of Things (IoT) Security Assessment (Penetration Test)

We offer independent, comprehensive security assessments of the highest standard. We are UK based, experienced in the public sector and certified to industry leading standards such as holding CREST Certified Tester. We have cleared consultants up to Developed Vetting (DV) level. Engagements can be delivered both on site and remotely.

Features

• Independently test and validate your cyber security defences
• Identify tangible threats to ensure efficient remediation activity
• View your hardware device as a threat actor would
• Discover technical debt in your hardware device
• Detailed and comprehensive reporting in easy to understand language
• Improve your resilience and meet compliance objectives
• UK Based Security Cleared CREST Certified Testers
• Identify insecurely configured and outdated physical devices
• Validate protective monitoring is capturing and alerting on suspicious activity
• Compartmentalise the risk of unknown devices on your network

Benefits

• We work collaboratively with your teams to upskill them
• We don’t sell you products or the latest buzzword solution
• We simulate threat actors, we don’t just run automated scans
• We provide prioritised and pragmatic advice specific to you
• We provide you with factual risk insight, no guesswork
• Protect your operational capability by reducing the risks
• Meet regulatory and internal compliance requirements
• Evaluates the cyber and physical risks exposed by the device
• Fix vulnerabilities at source and deploy hardening to all devices
• Experienced in all operating systems and software stacks

£750 to £1,800 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonathan.sword@agilitycyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

729620257330120

Contact

Jonathan Sword
01926 354 686
jonathan.sword@agilitycyber.co.uk

Planning

• Planning service: Yes
• How the planning service works: Our highly-experienced and certified consultants will work with you to provide an innovative security testing plan. ; ; This plan will capture all relevant details and provide you with the best level of assurance, inside your desired timescales whilst minimising any risks to your operational capability during the test.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications: CREST

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 9 to 5 (UK time), Monday to Friday
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Highly experienced and certified consultants are available for support, with skills appropriate to each engagement between 9am and 5pm (UK) time Monday through Friday (excluding bank holidays).

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Agility Cyber are committed to protecting the environment we all enjoy. Our carbon footprint is minimised throughout our work by travelling using public transport where feasible and remote working by default for Agility Cyber internal projects and when agreed with the client for billable work. We also encourage meetings by Microsoft Teams where possible to further reduce our carbon footprint.; ; Our IT infrastructure, used to support our organisation and the work we deliver, has a focus on being carbon neutral as we prioritise working with suppliers who both minimise and offset their carbon output. We deploy technical controls to further reduce our impact on the environment, such as resources being powered down when not in use to further reduce electricity consumption. We also avoid documents needing to be printed out, to save valuable trees.; ; All Agility Cyber employees and suppliers are educated about environmental challenges and encouraged to play their part in securing the environment for future generations. For suppliers this is often captured inside contracts, where Agility Cyber expect environmental impact reduction targets to be specified and adhered to. Where we run procurement activities, environment protection is a criteria that suppliers will be assessed on. We also encourage environmental considerations in our interactions with clients, always advocating for the least environmental damaging delivery profile whilst fully meeting their requirements.

  Covid-19 recovery

  Agility Cyber work in line with all COVID-19 guidance. We support remote working and social distancing for all employees. Active support and tailored working environments are provided for those who have a higher risk to COVID-19.; ; Cyber security is a high growth sector and we are actively helping those affected by COVID-19, both directly and indirectly, to secure the skills needed to join the industry as well as providing training and knowledge sharing with those already present in it. This isn’t just for current employees, as we have an outreach program with several educational establishments to help individuals re-skill and successfully make the career change.; ; COVID-19 wasn’t just a virus pandemic, it had a long lasting effect on a lot of peoples mental health. Agility Cyber are committed to supporting individuals, to improve their mental health and wellbeing. Some of the initiatives we have around this are access to mental health specialists, a collaborative and personal working environment to foster a strong team culture of inclusivity and ensuring that everyone has downtime to decompress from their normal duties.

  Tackling economic inequality

  Agility Cyber help small companies grow by actively seeking out smaller suppliers. We share feedback and suggest product development ideas to organisations to help them grow their revenue and efficiency. We offer many opportunities to those who face barriers to employment, such as residing in a deprived geographical area for example. We do this through a supportive environment, not just to assist people into jobs but to continue their career through skills development and obtaining experience.; ; We are supporters of outreach organisations such as UK cyber cluster collaboration (UKC3), the initiative funded by the Department for Science, Innovation and Technology. We present at cyber cluster events to share cyber security knowledge, including providing career advice and direct opportunities to enter the industry.; ; We have close links to academia, we present at universities around the UK on topics related to cyber security as well as providing insight into career paths. We help students create their CVs and provide guidance around interview techniques. We are members of boards of universities, which allows us to advise academia on industry requirements as well as approving course content to ensure the learning experience has the greatest benefit to students.; ; We support certification in the industry, through the Council of Registered Ethical Security Testers (CREST) as well as the Cyber Scheme certification paths. This includes training people up to take the certification exams as well as funding the attempts.; ; We work in an agile manner and expect our suppliers to do so too, which helps build resilience into our supply chain. Whilst the majority of suppliers are in the software space, it is still important to build resilience and security into the supply chain so that we can consistently offer the high level of service we do, taking suppliers and clients along the journey of improvement.

  Equal opportunity

  Agility Cyber believes everyone should have the opportunity to succeed and build something to be proud of. A business is nothing without its people and we strive to do the right thing by our people, including those at our clients and suppliers. ; ; We operate in an inclusive manner and ensure that we view people as individuals, which allows us to cater to their needs to provide a fair and representative working environment. Our ways of working facilitate those who require more accessibility to gain experience and certification, whilst being an active and valued member of our team. ; ; We also actively encourage people from other industries and disadvantaged backgrounds to join the cyber security industry and support them throughout their journey.; ; We encourage all our clients and suppliers to not just have robust policies securing equality but to live those values throughout their everyday interactions and work. Where legal protective instruments are provided, such as the modern slavery legislation for example, we will check for non-compliance and use that information to act appropriately.; ; We are committed to rewarding our people fairly. We do not have, and have no intention of ever having, zero hour contracts. The amount of pay people are given is always above the living wage and is in line with their performance and role in the organisation, irrespective of gender, background or any protected characteristic.

  Wellbeing

  Agility Cyber are invested in the well being of our employees, our clients and suppliers. We ensure the way we work and our expectations of others, factors in protecting their mental and physical health. ; ; We never run our teams up to maximum capacity, in terms of delivery, to ensure that everyone has decompression time as well as the free time to pursue ancillary interests such as research or simply time to catch up on admin tasks in a relaxed environment. ; ; We ensure the team are integrated and everyone understands the different roles in the organisation, which fosters more respect and understanding thus creating more empathy and care for others.; ; We highlight and encourage all employees to utilise the resources provided by the NHS and relevant charities such as MIND. We are also flexible in terms of work undertaken by employees, for example if a person does not agree with the nature of work of the client, or finds the industry they work in distressing such as investigating certain crimes for example, then there is no expectation to be involved in the delivery of that work.; ; Our approach to external parties, such as clients and suppliers, is very much to work in a collaborative way. This approach fosters a culture where all people act as an integrated community to deliver successful outcomes for all involved.

Pricing

• Price: £750 to £1,800 a unit a day
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonathan.sword@agilitycyber.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.