4. Risk Management & Accreditation Case Study — National Security

  Accreditation Requirements We were asked to create a risk management and accreditation documents for a large national security IT infrastructure. The system enables the sharing of large volumes of timely data and risk assessments between several Government agencies. Work Undertaken We conducted detailed threat and risk assessments. Thereafter, we developed a risk treatment plan […]

3. Evidential National Security PKI Case Study

PKI Requirements We were headhunted to rescue a national security PKI implementation. The PKI serves to protect classified data in transit to ensure that it is not tampered with; maintains its privacy and is received from or sent to a known and validated source. PKI also ensures that the data is transferred in a way […]

2. ISO/IEC 27001 Certification Case Study

Requirements A critical national infrastructure firm processing over GB£360 billion peak value of monthly automated payments asked us to assist with its ISO/IEC 27001 Certification process. Work Undertaken With ISO/IEC 27001 controls as drivers, we undertook a detailed review of the Governance, Delivery and Assurance aspects of the company’s Information Security Management System (ISMS). First, […]

1. Response to nation-wide cyber attack Case Study

Georgia’s Cybersecurity Requirements; At the request of Georgia’s Ministry of Economic Development, the International Telecommunication Union (ITU) asked us to lead an Expert Group to assess cybersecurity readiness, draft a cybersecurity strategy and action plan. The request came after Distributed Denial-of-Service (DDoS) attacks and the defacement of government and commercial websites in the Georgia-Russia war […]