Cyber and information security consultancy

claireLOGIC’s in-depth strategic IT review highlighted their need for ISO 27001, MD Andre Vaux set out to find a partner who would be approachable and collaborative and decided to engage Ascentor.

The initial engagement involved a series of workshops and meetings with key claireLOGIC stakeholders. The output was a report which provided claireLOGIC with a roadmap of activities needing to be undertaken and completed in readiness for the external ISO 27001 Stage 1 and Stage 2 audits. In addition, claireLOGIC were armed with a view of how much effort and over what time period preparation would be required.

The Houses of Parliament engaged Ascentor to provide experienced guidance to implement a cloud information assurance process from scratch.

We quickly introduced a risk appetite statement for both Houses that reflected the concerns of the two SIROs and laid the groundwork for how information risks were to be treated.

The assurance process is now well-established. Risks are regularly reappraised and managed to ensure they stay consistent with the risk appetite statement and continually improve.

SeeByte UK engaged Ascentor to provide independent guidance to form a centralised approach to security that satisfied customer expectations in meeting multiple standards.

SeeByte UK and Ascentor worked together to develop a strategy to simplify and demonstrate its existing alignment with complex and varied cyber security and information assurance requirements.

Based on Ascentor’s advice and guidance, SeeByte UK was able to make informed decisions about the most pragmatic approach to take.

The Office for Nuclear Regulation (ONR) engaged Ascentor to help develop a risk-based assessment methodology for CS&IA inspections of List N facilities.

The findings of our inspections built a risk-informed picture of the maturity of CS&IA arrangements across 26 List N facilities.

The client commented on Ascentor’s “proportionate, pragmatic and flexible approach” which has significantly accelerated ONR’s ability to improve CS&IA-focused regulatory oversight across List N facilities.

This nuclear energy company engaged Ascentor as an independent Design Authority to strengthen cyber security assurance on design projects.

We engaged with a wide group within the business and conducted a cyber security assessment with improvement recommendations in just 20 days.

The client was impressed with our in-depth knowledge of the challenges of delivering cyber security into complex environments and the clarity of our delivery.

This MOD delivery team needed security advice and guidance on an operationally important project demanding highly specialised capability.

Ascentor’s advice and guidance were commended by the accreditor and information asset owner (IAO).

The accreditor commented that the Security Assurance Coordinator (SAC) consultant from Ascentor was: “One of the best SACs I have worked with.”

Resilient, a pioneering provider of smart voice services, engaged Ascentor to help guide their security improvement and certification journey.

They needed to reduce risk and also wanted customers to have confidence and trust in Resilient as a safe and secure service provider.

Ascentor’s support steered Resilient down a smooth certification path towards a strong security culture – while avoiding the common pitfalls that can waste time, effort and money.  

claireLOGIC’s in-depth strategic IT review highlighted their need for ISO 27001, MD Andre Vaux set out to find a partner who would be approachable and collaborative and decided to engage Ascentor.

The initial engagement involved a series of workshops and meetings with key claireLOGIC stakeholders. The output was a report which provided claireLOGIC with a roadmap of activities needing to be undertaken and completed in readiness for the external ISO 27001 Stage 1 and Stage 2 audits. In addition, claireLOGIC were armed with a view of how much effort and over what time period preparation would be required.