ITPS Limited

Cyber Essential & Cyber Essentials Plus Assessments

The Cyber Essentials Scheme is a UK government-backed certification programme giving businesses cybersecurity controls to implement within their organisation.

The scheme consists of two certification:

Cyber Essentials: A self-assessment certification where businesses complete a questionnaire about their cybersecurity controls.

Cyber Essentials Plus: An independent audit by a qualified assessor.

Features

• Review of Boundary Firewall and Internet Gateways
• Review of Secure Configurations
• Review of User Access Controls
• Review of Malware Protection In Place
• Review of Patch Management

Benefits

• UK Government Security Clearances
• Identify vulnerabilities and compliance gaps in your organisation's security posture
• Proactively mitigate cybersecurity risks, reducing the likelihood of cyber attacks
• Cyber Essentials Plus Certification upon successful evaluation
• Dedicated consultancy from a cybersecurity expert
• Assists in addressing potential weak points

£925 to £2,500 a transaction a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at David.Warrington@itps.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

736862967403793

Contact

David Warrington
0191 442 8300
David.Warrington@itps.co.uk

Planning

• Planning service: Yes
• How the planning service works: Cyber Essentials Plus Certification involves an independent assessment of an organisation's cybersecurity controls by a qualified assessor. The assessment involves a technical audit of the organisation's systems to ensure that the five basic cybersecurity controls are implemented correctly. ; ; To achieve Cyber Essentials Plus certification, businesses must first achieve Cyber Essentials Standard certification. ITPS provides support and guidance to its customers to ensure they meet the Cyber Essentials Plus certification requirements. We will arrange for a qualified assessor to conduct the technical audit of the organisation's systems. The assessor will provide a report on the audit findings, and we will give feedback to the business on any areas that need improvement. ; ; This inclusive package is perfect for businesses that would benefit from expert assistance while preparing for the Cyber Essentials Plus certification. In addition to the core certification process, this package integrates a full day of professional consultancy to help streamline your application, offering tailored advice to ensure your security practices are aligned with the Cyber Essentials Plus standards.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: In association with the North East Regional Economic and Cyber Crime Units (NERCCU), we provide comprehensive cyber crime in person training for all organisations associated with ITPS
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CHECK
  • CREST
  • Tigerscheme

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: No

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Standard 9am to 5pm service support UK business hours which is included as standard with the service.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Standard 9am to 5pm service support UK business hours which is included as standard with the service.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Bsi
• ISO/IEC 27001 accreditation date: 31/01/2022
• What the ISO/IEC 27001 doesn’t cover: No exclusions
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • Cisco CMSP (Advanced Partner) Certified
  • Cisco Advanced Security Architecture Specialisation
  • Cisco Powered Network Accreditation
  • Microsoft Gold Partner
  • NHS IG Toolkit Certified
  • HSCN Stage 1 & 2 Certified

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We are committed to preventing pollution and to complying with all relevant environmental legislation, regulations and other environmental requirements. We will regularly evaluate the environmental impact of our activities, products and services and we will take action to continually improve our environmental performance. It is our policy to: · Minimise the use of energy, water and natural resources · Minimise waste through prevention, re-use and recycling where possible · Dispose of waste safely and legally · Avoid the use of hazardous materials, where practical · Work with environmentally responsible suppliers · Prevent environmental damage and minimise nuisance factors such as noise and air pollution. We will define environmental objectives, targets and improvement actions that are related to this policy and to our significant environmental aspects. We will regularly evaluate progress. We are committed to providing relevant environmental training and promoting environmental awareness to employees and, where appropriate, to suppliers and to communicating our environmental performance. We will implement processes to prevent environmental non-conformities and to ensure that we are prepared to deal with potential environmental emergencies. This policy will be regularly reviewed and updated to take account of organisational priorities and changes, environmental legislation and best practice. Detailed plans of how we achieve, measure and report against environmental governance standards are contained within the following documents: Environmental Policy Carbon Reduction Plan Net Zero by 2050 Policy Health and Safety Policy

  Covid-19 recovery

  To meet the challenges posed by the pandemic, ITPS had to react in an agile and decisive way. As we move into the next phase, now is the time for us to seek out and seize the opportunities emerging in the recovery. This involves conducting an “after-action review” to collect data and insights on lessons learned from the pandemic, and then using these to prioritise actions to enhance business value today and build strategic resilience for tomorrow. We have identified three key lessons that we have adopted for long-term resilience: 1. Plan and prepare for the next inevitable disruption by designating a crisis response team; designing a crisis response plan aligned to our strategy, goals and purpose; and building an integrated resilience program. We support the physical and mental health of staff by offering free fruit and healthy snacks at work, available at all times. We regularly communicate on topics including mental health in the workplace and promote the resources available via the Perkbox app. We have a large team of qualified mental health first aiders. We have made every effort to support COVID-19 recovery including the provision of hand sanitiser around the building and on each person’s desk, cleaning wipes available for all workstations and increase in hours available for formal cleaning within the building including touch points cleaned four times per day. We have offered hybrid working since returning to work following the pandemic, and encourage staff to work from home if they have any Covid symptoms, and we offer free lateral flow tests to all staff. We are making progress towards sustainable travel targets including the provision of a company salary sacrifice scheme to buy electric cars and the fitting of additional charging points within the car park.

  Tackling economic inequality

  We aim to make a positive difference to our local community by delivering economic and social benefits, and by being a good neighbour. We have built a particularly strong reputation for supporting schools, universities, charities and other good causes, many of them nominated by our staff. We strive to be a business with a heart and a real commitment to social responsibility, generating a ‘feel good’ factor among our staff and client base. Our support ranges from regular fund-raising events for our corporate charities through to sponsoring grass roots football teams in our local area. We also support various smaller good causes on an ad-hoc basis, nominated by our staff. Full details of what we do and how we measure it can be found in our Community and Charitable Governance Policy.

  Equal opportunity

  ITPS recognises the benefits of a diverse workforce and is committed to providing a working environment that is free from discrimination. We seek to promote the principles of equality and diversity in all our dealings with employees, workers, job applicants, clients, customers, suppliers, contractors, recruitment agencies and the public. All employees and those who act on the our behalf are required to comply with our company policy when undertaking their duties or when representing us in any other guise. We aim to ensure that no employee or job applicant is subject to unlawful discrimination, either directly or indirectly, on the grounds of gender, race (including colour, nationality and ethnic origin), disability, sexual orientation, marital status, part-time status, age, religion or belief. This commitment applies to all aspects of employment, including: recruitment and selection, including advertisements, job descriptions, interview and selection procedures training promotion and career-development opportunities terms and conditions of employment, and access to employment-related benefits and facilities grievance handling and the application of disciplinary procedures selection for redundancy All employees will have equal access to training and other career-development opportunities appropriate to their experience and abilities. We will take appropriate positive action measures (as permitted by equal opportunities legislation) to provide specialist training and support for groups that are under-represented in the workforce and encourage them to take up training and career development opportunities.

  Wellbeing

  We are committed to providing a healthy working environment and improving the quality of working lives for all staff. The wellbeing strategy aims to support staff in their physical, mental, emotional and financial wellbeing. The wellbeing strategy’s ultimate goal is to improve the health, safety and wellbeing of our staff and to prevent work associated ill health, for the overall benefit of staff and the organisation. Examples of our employee wellbeing activities include: hybrid working, three days in the office and two days at home. Flexible working and family friendly flexibility. Access to on line resources via the Perkbox subscription which contains a huge number of wellbeing resources to access. Trained mental health first aiders. Regular staff communications promoting good mental and physical health including signposting to NHS talking therapies contacts. Generous annual leave allowance plus your birthday off work. Enhanced sick pay, full pay up to 4 months. Enhanced maternity and paternity leave. Salary sacrifice schemes including tech scheme, cycle to work and electric cars. Clearly defined training and development plans. Freely available fresh fruit and breakfasts available. An active social calendar. Partnering with a recognised UK expert to meet all Health and Safety requirements Involving staff and keeping them informed by regular staff briefings.

Pricing

• Price: £925 to £2,500 a transaction a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at David.Warrington@itps.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.