The NCSC invited organisations, including The Cyber Scheme, to help develop a new Cyber Advisor (Cyber Essentials) service by funding the initial 100 Cyber Advisor assessments.
The Proof of Concept phase has now been successfully completed and we would like to thank all those who participated. We were able to identify a diverse range of individuals from across the UK with varying levels of skills and experience to participate.In-person assessments took place at seven regional assessment centres and we also conducted remote assessments.
The assessment process is made up of three elements: multiple choice test; questions requiring shortform written answers and a face-to-face interview with an assessor.
The assessment tests the candidates’ knowledge of the Cyber Essentials Standard and the practical skills required to implement any recommendations made to organisations who wish to meet the Standard.
The Proof of Concept also gave us the opportunity to test the processes and logistics of conducting assessments as well as taking a view on the commercial aspects of how it is operated.
We now have a wealth of data and insight that we are now in the process of analysing as we finalise the details of the scheme. We need to ensure that we have a repeatable, consistent assessment process and that Cyber Advisors can offer the required knowledge and skillset to their clients.
Under the new scheme those organisations who have a qualified Cyber Advisor on their staff will be able to apply to become an NCSC Assured Service Provider. Only organisations which become Assured Service Providers and employ a qualified Cyber Advisor will be able to offer NCSC assured Cyber Advisor services to customers.
We anticipate that that the scheme will be up and running in full in late Spring.
For more information on the Cyber Advisor scheme, the pilot or to register your interest, please visit IASME’s webpage.
Information about the initial Cyber Advisor assessments
The NCSC funded the initial 100 Cyber Advisor assessments. This allowed individual applicants with differing levels of experience and skills, and from diverse backgrounds across the UK to be tested. Those individuals who completed a free assessment will be asked for feedback and to provide data to help the NCSC develop the Cyber Advisor scheme further, as well as ensuring that Cyber Advisors can offer the required knowledge and skill set.Cyber Advisors will be expected to help organisations by:
The Proof of Concept phase has now been successfully completed and we would like to thank all those who participated. We were able to identify a diverse range of individuals from across the UK with varying levels of skills and experience to participate.In-person assessments took place at seven regional assessment centres and we also conducted remote assessments.
The assessment process is made up of three elements: multiple choice test; questions requiring shortform written answers and a face-to-face interview with an assessor.
The assessment tests the candidates’ knowledge of the Cyber Essentials Standard and the practical skills required to implement any recommendations made to organisations who wish to meet the Standard.
The Proof of Concept also gave us the opportunity to test the processes and logistics of conducting assessments as well as taking a view on the commercial aspects of how it is operated.
We now have a wealth of data and insight that we are now in the process of analysing as we finalise the details of the scheme. We need to ensure that we have a repeatable, consistent assessment process and that Cyber Advisors can offer the required knowledge and skillset to their clients.
Under the new scheme those organisations who have a qualified Cyber Advisor on their staff will be able to apply to become an NCSC Assured Service Provider. Only organisations which become Assured Service Providers and employ a qualified Cyber Advisor will be able to offer NCSC assured Cyber Advisor services to customers.
We anticipate that that the scheme will be up and running in full in late Spring.
For more information on the Cyber Advisor scheme, the pilot or to register your interest, please visit IASME’s webpage.
Information about the initial Cyber Advisor assessments
The NCSC funded the initial 100 Cyber Advisor assessments. This allowed individual applicants with differing levels of experience and skills, and from diverse backgrounds across the UK to be tested. Those individuals who completed a free assessment will be asked for feedback and to provide data to help the NCSC develop the Cyber Advisor scheme further, as well as ensuring that Cyber Advisors can offer the required knowledge and skill set.Cyber Advisors will be expected to help organisations by:
- Conducting Cyber Essentials gap analysis to assess the organisations internet-facing IT identifying where it fails to meet the Cyber Essentials controls.
- Developing reports on the status of the organisation’s Cyber Essentials controls i.e. detailing the requirements that are met and those that are not; describing why controls are not met and the risks the organisation is exposed to; recommended actions to take.
- Working with the business to agree remediation activities.
- Planning remediation activities that align to the risk and business priorities.
- Implementing remediation activities – or guide technical teams to do so – sympathetically to operational activities.
- Developing and presenting post-engagement reports summarising the engagement and detailing any remediation work completed, pointing out any residual risk with recommendations for reducing those risks.
If you believe that you have the required knowledge and skill set please apply by contacting our delivery partner, IASME. Further information can be found on the IASME website.
Anyone who passes the assessment but who is not employed by an Assured Service Provider will not be eligible to offer NCSC assured Cyber Advisor services.
Cyber Advisor Assured Service ProvidersTo be eligible to offer NCSC assured Cyber Advisor services under the scheme organisations will need to become an Assured Service Provider registered with IASME and employ at least one formally assessed Cyber Advisor.
An organisation applying to be an Assured Service Provider will be expected to meet requirements demonstrating good cyber security and a commitment to achieving an excellent and consistent customer experience through a quality management system. An annual subscription fee will be levied.
Anyone who passes the assessment but who is not employed by an Assured Service Provider will not be eligible to offer NCSC assured Cyber Advisor services.
Cyber Advisor Assured Service ProvidersTo be eligible to offer NCSC assured Cyber Advisor services under the scheme organisations will need to become an Assured Service Provider registered with IASME and employ at least one formally assessed Cyber Advisor.
An organisation applying to be an Assured Service Provider will be expected to meet requirements demonstrating good cyber security and a commitment to achieving an excellent and consistent customer experience through a quality management system. An annual subscription fee will be levied.