Protection Group International Limited

Cyber Assurance as a Service

PGI’s Cyber-Assurance-as-a-Service offers organisations four Cyber Assurance solution levels:
Virtual CISO - Cyber and information security leadership - the knowledge and expertise of a CISO without the high-cost of a full-time resource.
Governance - creation of an information security framework, Tune-up and Review levels for improvement and reviewing established frameworks

Features

• 4 x Service Options: CISO, Governance, Tune-Up and Review
• Virtual CISO - Information security focal point developing Security Strategy
• Development of a Cyber security management strategy
• Awareness, New Threats, Mitigation, security control improvements, additional expert support
• Governance Model - Establishment of your information security framework
• Development of a Security Strategy with an accompanying Roadmap
• Tune Up Model - Build and improve information security controls
• Review policies processes procedures awareness and technical controls
• Review Model - Continuous improvement of your security framework

Benefits

• Significant cost savings
• Vendor-neutral advice
• Flexibility
• Increased management engagement
• Subject matter expertise
• Cost-effective cyber & information security management
• A fully tailored approach utilising our flexible and experienced consultants
• Remaining up-to-date with the relevant regulation requirements
• Maintain the improved security position through annual audits and testing
• Models tailored to meet different levels of maturity and requirements

£975 to £1,325 an instance a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidteam@pgitl.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

828870542695312

Contact

Mike Tipson
020 4566 6600
bidteam@pgitl.com

Planning

• Planning service: Yes
• How the planning service works: We would work with our clients over five phases.; PGI can provide this cyber security leadership and; trusted advisor role from a pool of experienced ; consultants and practitioners.; We will build and supply a service that will be; tailored to fit your business needs, while you gain; access to a the full spectrum of PGI’s skills and ; knowledge.; The gap assessment provides a view of where effort; needs to be concentrated to ensure progress, and; which actions should be performed first. ; This can help with project planning, resource ; forecasting and budgeting.; You will be provided with a detailed Gap Assessment ; report, describing the findings and prioritised ; recommendations.; PGI’s team of experts can help you establish strong; security governance controls. If your organisation is; aiming for ISO 27001 certification this will launch; your implementation by focusing on the first 4; sections of the standard (Context / scope,; Leadership, Planning, and Support).; PGI ; consultants can apply their expertise to develop; policies and procedures tailored to your business,; allowing your workforce to focus efforts on other ; implementation activities.; PGI’s experts can help you establish strong security; review and monitoring controls.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: PGI’s Cyber Academy offers the highest level of Cyber Security training for business and government professionals, delivering a one-stop training environment to combat the growing cyber threat for all industry sectors. PGI’s Consultancy and Training Staff and Associates combine the skills drawn from both practical experience in the Cyber Security industry and expertise in developing and delivering training courses, education programmes, mentoring and career development support. ; ; The resulting global deficit in cyber security skills is estimated at nearly three million professionals. We are helping to narrow this skills gap by:; ; • Designing, developing and resourcing national cyber security teams; • Transforming, growing, certifying and testing organisational workforces for government, critical infrastructure and businesses; • Training, developing and certifying existing specialists and new cyber security practitioners; • Running reskilling programmes to grow more cyber security professionals in key sectors; • Developing enterprise risk management staff for organisations of all sizes; • Building and increasing the knowledge of government and corporate leaders; • Educating global, medium and small companies on how to operate securely in a digital world
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: PGI would work with our clients to understand their requirements and to help them determine the most appropriate location for the services they wish to provide. These could be hosted on premise or elsewhere, and PGI will work with the client to ensure that all appropriate security measures are considered.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: PGI would work with the client to review, refine and/or create policies, processes, procedures, cyber security awareness training and technical controls. PGI can also carry out Penetration Testing, Vulnerability scanning and various security configuration reviews with clear and defined plan in order to mitigate, and/or improve cyber security across multiple areas of the business. This will give the client confidence that their systems, procedures are practical, fit for purpose, and that their employees know what is expected of them.; PGI is certified to the QG Quality Management Standard. From an information security standpoint, PGI is ISO 27001:2017 certified and work to a risk assessment procedure aligned with these security industry best practices (including ISO 27005 (the international standard for Risk Management)).

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • CompTIA Network+
  • CompTIA Security+
  • CompTIA Advanced Security Practitioner
  • Certified Information Systems Security Professional
  • Certified Information Security Manager
  • ISO 27001 Certified ISMS Lead Auditor
  • PCI QSA
  • General Data Protection Regulation (GDPR) Practitioner
  • NCSC Certified Trainers
  • Cyber Essential Plus Certified Assessors

Ongoing support

• Ongoing support service: Yes
• Types of service supported: Hosting or software provided by a third-party organisation
• How the support service works: PGI can provide skilled and knowledgeable audit practitioners. Our security consultants also have deep experience of implementing controls that ensure continuous improvement of an ISMS.; As for the other streams, you will be immediately procuring ready-made security skills and knowledge versus potential delays and frustrations encountered by developing the required in-house skills or external ; recruitment.

Service scope

• Service constraints: PGI have no constraints on the services we provide. Work can be carried out on site or remotely, depending on client requirements.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Responses will normally be within one working day, unless in the middle of an incident / project when response times will usually be quicker. Weekend response times may be different, depending on contractual requirements.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Support levels would be agreed on a project by project basis. Cost for support will be determined based on client requirements. Typically each client will be assigned a lead contact, who may be one of PGI's consultants or may be part of the sales team. This will depend on the nature of the project being undertaken.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 28/04/2022
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: CREST

Social Value

• Social Value:

  Social Value

  • Equal opportunity
  • Wellbeing

  Equal opportunity

  PGI is an equal opportunity employer, with a strong focus on Diversity, Equity and Inclusion.

  Wellbeing

  PGI provides staff with support across mental and physical health.

Pricing

• Price: £975 to £1,325 an instance a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidteam@pgitl.com. Tell them what format you need. It will help if you say what assistive technology you use.