NCSC Cyber Advisor
Introduction
Cyber Advisors (Cyber Essentials) can help organisations assess the gap between their current cyber security stance, and that achieved by implementing the Cyber Essentials technical controls. This service is tailored towards small and medium sized organisations and the Advisors have all been assessed not just on their technical knowledge, but also their ability to work specifically with small organisations.
With the specific needs of an individual business in mind, Cyber Advisors can provide hands-on support to help the organisation take recommended actions.
An organisations will be helped to meet the Cyber Essentials technical controls, however, they do not necessarily need to be aiming for Cyber Essentials certification. The advice offered by Cyber Advisors will help prepare an organisation should they wish to certify, in which case, they will need to apply through a Cyber Essentials Certification Body.
Cyber Advisors can help organisations by:
An organisations will be helped to meet the Cyber Essentials technical controls, however, they do not necessarily need to be aiming for Cyber Essentials certification. The advice offered by Cyber Advisors will help prepare an organisation should they wish to certify, in which case, they will need to apply through a Cyber Essentials Certification Body.
Cyber Advisors can help organisations by:
- Conducting Cyber Essentials gap analysis to assess the organisations internet-facing IT, identifying where it fails to meet the Cyber Essentials controls.
- Developing reports on the status of the organisation’s Cyber Essentials controls i.e. detailing the requirements that are met and those that are not; describing why controls are not met and the risks the organisation is exposed to; recommended actions to take.
- Working with the business to agree remediation activities.
- Planning remediation activities that align to the risk and business priorities.
- Implementing remediation activities, or guide technical teams to do so – sympathetically to operational activities.
- Developing and presenting post-engagement reports summarising the engagement and detailing any remediation work completed, pointing out any residual risk with recommendations for reducing those risks.
Services
Click on the Enquire button below to find out more:
Our Cyber Advisors have passed an independent assessment. This measured their:
- Knowledge and understanding of the Cyber Essentials’ technical controls.
- Competence in providing practical, hands-on support.
- Ability to understand and work with small and medium sized organisations.
Frequently Asked Questions
- Why does the cyber advisor service centre around the 5 cyber essentials controls?Ultimately, the Cyber Advisor scheme may expand beyond Cyber Essentials. However, the Cyber Essentials standard has been adopted because the NCSC recognises this as good baseline standard that defends against a range of commodity attacks – with confidence that it will improve the security for those that properly implement it.
- Does implementing cyber advisor advice lead to cyber essentials certification?Organisations looking for advice do not need to be aiming for Cyber Essentials certification. The advice offered by Cyber Advisors will prepare you for certification. However, Cyber Advisors cannot issue Cyber Essentials certification (unless they are also a Cyber Essentials Certification Body assessor), so organisations will still need to apply for Cyber Essentials certification separately.
- What is the difference between a cyber essentials certification body and a cyber advisor assured service provider?A Cyber Essentials Certification Body can assess if an organisation meets the criteria required for Cyber Essentials certification and issue that certification – something a Cyber Advisor cannot do unless their organisation is also a Cyber Essentials Certification Body.