in Security

NCSC launches Cyber Advisor scheme

Posted 29 July 2022

The National Cyber Security Centre (NCSC) has launched a Cyber Advisor scheme which will offer assured cyber security consultancy services to small and medium sized companies, helping them achieve a minimum standard of security.



Image courtesy NCSC

The NCSC is currently inviting organisations to help develop a new Cyber Advisor service. The initial 100 Cyber Advisor assessments will be funded by the NCSC.

A Cyber Advisor will be an individual assessed by the NCSC as having a good understanding of baseline security controls and the ability to provide practical help to companies who want to achieve them.

Qualified Cyber Advisors will initially focus on helping their customers meet Cyber Essentials’ five technical controls – firewalls, secure settings, access controls, malware and software updates – by identifying and helping implement improvements that are right for the size and needs of their customer.

A company engaging the help of a Cyber Advisor doesn’t need to be aiming for Cyber Essentials certification; those controls are being used as a baseline as they help guard against the most common cyber attacks.

Under the new scheme those organisations who have a qualified Cyber Advisor on their staff will be able to apply to become an NCSC Assured Service Provider. Only organisations who become Assured Service Providers and employ a qualified Cyber Advisor will be able to offer NCSC Cyber Advisor services to customers.

To launch this service, the NCSC is now inviting both individuals and organisations offering cyber advice to register their interest in the scheme.
 
Information about the initial Cyber Advisor assessments

The NCSC will initially be fully funding the initial 100 Cyber Advisor assessments. Individual applicants - with differing levels of experience and skills, and from diverse backgrounds across the UK - will be selected to test. Those individuals who complete a free assessment will be asked for feedback and to provide data to help the NCSC develop the Cyber Advisor scheme further and ensure that Cyber Advisors can offer the required knowledge and skill set.

Cyber Advisors will be expected to help organisations by:

  •     Conducting Cyber Essentials gap analysis to assess the organisations internet-facing IT identifying where it fails to meet the Cyber Essentials controls.
  • Developing reports on the status of the organisation’s Cyber Essentials controls for senior leadership, detailing the requirements that are met and those that are not, describing why controls are not met and the risks the organisation is exposed to, as well as the recommended actions to take.
  • Working with the business to agree remediation activities.
  • Planning remediation activities that align to the risk and business priorities.
  • Implementing remediation activities – or guide technical teams to do so – sympathetically to operational activities.
  • Developing and presenting post-engagement reports summarising the engagement and detailing any remediation work completed, pointing out any residual risk with recommendations for reducing those risks.

If you believe that you have the required knowledge and skill set please apply by contacting the scheme’s delivery partner, IASME.

Further information can be found on the IASME website: https://iasme.co.uk/cyber-advisor-scheme
 

 

 

Other Stories
Advertisement
Latest News

Babcock partners with IAI on MoD SERPENS radar programme

Babcock has signed a Memorandum of Understanding (MoU) with Israel Aerospace Industries’ (IAI) Group and Subsidiary ELTA Systems to provide a deep-find radar solution for the UK Ministry of Defence’s SERPENS programme.

Vice Admiral Sir Chris Gardner KBE appointed CEO of SDA

The Prime Minister has approved the appointment of Vice Admiral Sir Chris Gardner KBE as the new CEO of the Submarine Delivery Agency (SDA).

Bristow to deliver UKSAR2G with Schiebel Camcopter capability

Bristow has been awarded a 10-year contract by the UK Maritime Coastguard Agency (MCA) to deliver the Second-Generation Search and Rescue (UKSAR2G) programme, with the contract including the operational deployment of

Inter-Tec Aero moves European business to Shannon

Inter-Tec Aero Ltd, which offers bespoke aerospace design, certification and analysis solutions to a broad range of aircraft platforms, has relocated its EASA DOA office from Sligo in Ireland to Shannon, as of 1st July this year.

Menzies Aviation secures eight airport contracts in Pakistan

Menzies Aviation today announced more than a dozen significant contract wins in Pakistan since it acquired a 49% shareholding in Royal Airport Services (RAS), an aviation services business based in Pakistan.

Element acquires Singapore Test Services

Element Materials Technology (Element) has acquired testing, inspection, calibration and certification provider, Singapore Test Services (STS), a subsidiary of ST Engineering.

ODU SK0104300422
See us at
Advanced Engin BT2504031122DVD BT2704220922Future Arm Vehicles Power Systems BTGlobalMilSatCom BT2006101122