Security and Compliance
Dataquest's Virtual CISO offering enables clients to procure the knowledge, expertise and guidance of experienced and accredited CISO's on 'as needed' basis without the overheads of full-time CISO function. The vCISO will review current infosec requirements and provisions, defining new policies and procedures for continued assurance where required.
Features
- Access to board level expertise in information security
- Initial Current State Assessment and Gap Analysis
- Potential to oversee remedial activities
- Refresh or renew Information Security policies and procedures
- Continued CISO availability to assure and advise
- GDPR aligned service guidance
- Opportunity to enable or extend SOC capability
- Industry accredited resources, with ISO27001, CISP and CISSP
- Familiar and accepted security architecture models
Benefits
- Fractional utilisation improves cost effectiveness
- Implement current and comprehensive best practices
- Enable senior management to engage via exec friendly output
- Improve incident response capability
- Access to continually up to date industry knowledge and experience
- Gain a greater understanding of asset protection requirements
- Ability to extend the service to encompass SOC delivery
- Cost effective alternative to full time CISO
Pricing
£750 to £1,500 a unit a day
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
8 5 8 0 6 5 0 4 5 3 1 8 6 8 5
Contact
DATAQUEST (HEATHROW) LIMITED
Michael Lyons
Telephone: 07799894781
Email: gcloud@dqgroup.com
Planning
- Planning service
- Yes
- How the planning service works
- Onboarding engagement underpinned by robust planning clearly identifying Dataquest's dependencies and organisation dependencies and when onboarding will complete. Onboarding planning focuses on gaining necessary understanding of your organisation, employees and systems, configuring our ITSM tool and contact centre solution, populating our knowledge and training our service desk agents.
- Planning service works with specific services
- No
Training
- Training service provided
- Yes
- How the training service works
- Dataquest can provide guidance and advice on all aspects of Learning and Development for Cloud implementation programmes/projects. By providing ongoing support throughout the lifecycle of the programme/project we can work with you to identify, assess and manage your learning needs; acting proactively rather the reactively.
- Training is tied to specific services
- No
Setup and migration
- Setup or migration service available
- Yes
- How the setup or migration service works
- This service will either take over (transition) from other provider or internal resources and onboarding process is defined in the Service Description Document.
- Setup or migration service is for specific cloud services
- No
Quality assurance and performance testing
- Quality assurance and performance testing service
- Yes
- How the quality assurance and performance testing works
- Dataquest's Quality Management System (QMS) is aligned to the requirements of ISO9001:2015 which underpins the delivery of all our Security Consultancy Services.
Security testing
- Security services
- Yes
- Security services type
-
- Security strategy
- Security risk management
- Security design
- Cyber security consultancy
- Security testing
- Security incident management
- Security audit services
- Certified security testers
- Yes
- Security testing certifications
- CHECK
Ongoing support
- Ongoing support service
- Yes
- Types of service supported
-
- Hosting or software provided by your organisation
- Hosting or software provided by a third-party organisation
- How the support service works
- Level 1 and 2 technical support provided for cloud services.
Service scope
- Service constraints
-
Our service is subject to our rigorous information security and quality control process led by our ISO 27001 and 9001 standards. A dedicated Project Delivery Lead will manage each engagement to establish and align our approach from initial introductions through to deployment to ensure the successful delivery of your Projects and Programmes.
Each programme delivery lead reports directly into a business unit director meaning escalation paths are clear and quick and thus we are able to respond within a professional working day to any support issues.
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- A default set of SLAs and KPIs are offered with our Service Desk as a Service. Through discussion we believe in agreeing levels of service appropriate for customers needs. Details are provided in the Service Description Document. A Client Manager is included as part of the service who will be your primary point of contact, attend monthly performance reviews and be your point of escalation.
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Support levels
- Support levels related to this service are dependant upon the severity of the issue and the impact on our customers business, with more critical issues dealt with first.
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Conforms to BS7858:2019
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- The British Standards Institution (BSI)
- ISO/IEC 27001 accreditation date
- 19/05/2022
- What the ISO/IEC 27001 doesn’t cover
- The whole organisation
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- No
Social Value
- Fighting climate change
-
Fighting climate change
Dataquest operates an Environmental Management System (EMS) that has gained ISO 14001: 2015 certification. Our EMS is a continual cycle of planning, implementing, reviewing, and improving Dataquest’s processes and actions to meet environmental obligations and objectives. Energy efficiency makes a significant contribution to environmental sustainability and helps us to reduce our operating costs. We monitor our use of key sources of energy (electricity, gas,) with the aim of reducing our carbon emissions. - Covid-19 recovery
-
Covid-19 recovery
Dataquest continues to follow and update our business continuity plan with a focus on protecting the health and well-being of our colleagues, while keeping the business running, supporting our partners and continuing to provide the best possible service levels. In line with our ISO 27001 Standard, we have a robust disaster recovery and business continuity plan in place. This includes significant investments in technology and infrastructure to ensure we can continue to operate the business in a variety of unforeseen scenarios. We have extensive online collaboration capabilities to help ensure business continuity and we’re working tirelessly to help everyone stay safe while at the same time continuing to serve our customers. - Tackling economic inequality
-
Tackling economic inequality
Dataquest is committed to tackling economic inequality at root, from creating new businesses and new employment opportunities, to improving education and training, Our overriding vision is to help lower the unequal distribution of income and opportunity between different groups in society. - Equal opportunity
-
Equal opportunity
Dataquest is an equal opportunities employer and in general would wish to go beyond the strict legal requirements as determined by statute in order to be seen to promote sound and fair management practices and procedures at all times. It is therefore the Company’s aim to provide equality of opportunities for all employees by providing a working environment free from unlawful discrimination, harassment, bullying or victimisation on the grounds of sex, marital status, sexuality, disability, age, race, colour, ethnic origin, nationality, religious or political beliefs. This principle will equally apply to recruitment, training, promotion, dismissal, transfer and all benefits, terms and conditions of employment. The Company will not tolerate acts which breach policy and all instances of such behaviour will be taken seriously, be thoroughly investigated and in proven cases, will be subject to the Company’s disciplinary procedures. Policies for recruitment, selection, training, development and promotion are designed to ensure that individuals are selected, promoted and otherwise treated solely on the basis of their relevant aptitudes, skills and abilities. - Wellbeing
-
Wellbeing
We encourage vitality, a healthy quality of life, and a positive working environment in which people thrive. Our priority is to be proactive, so employees can gain awareness, education, and support to successfully function at work and at home, free from factors which may negatively impact upon their health.
Pricing
- Price
- £750 to £1,500 a unit a day
- Discount for educational organisations
- No