An advocate of pragmatic, benefits-based cyber risk management, Dave’s hands-on experience as an accreditor and information assurance practitioner helped shape Ascentor’s values and principles. A co-founder of Ascentor back in 2004, Dave leads and inspires the team.
Business Development Manager
With over fifteen years’ experience in the information security sector, Simon is a well-known face in the corridors of our defence and security customers. His military roots mean he understands the critical role information risk management and cyber security play in keeping organisations safe.
- Cyber Essentials +
- IASME Gold
- Crown Commercial Service Supplier
- NCSC (CESG) Certified Professionals CCP
- Certified Information System Security Professional CISSP
- CE/CE+/IASME Auditors
- Certified Information Security Auditor CISA
- Certified Information Security Manager CISM
- Certified Ethical Hackers
- Cisco and Microsoft Certified Engineers
- PRINCE2 and APMP Practitioners
- NDI (Board Advisor)
- Team Defence Information
- Armed Forces Communications and Electronics Association AFCEA
- Defence Industry Security Association DISA
- Institute of Information Security Professionals IISP
- International Information System Security Certification Consortium ISC2
- G-Cloud 12
Frameworks via partners:
- Aurora (EDP)
The Houses of Parliament engaged Ascentor to provide experienced guidance to implement a cloud information assurance process from scratch.
We quickly introduced a risk appetite statement for both Houses that reflected the concerns of the two SIROs and laid the groundwork for how information risks were to be treated.
The assurance process is now well-established. Risks are regularly reappraised and managed to ensure they stay consistent with the risk appetite statement and continually improve.
SeeByte UK engaged Ascentor to provide independent guidance to form a centralised approach to security that satisfied customer expectations in meeting multiple standards.
SeeByte UK and Ascentor worked together to develop a strategy to simplify and demonstrate its existing alignment with complex and varied cyber security and information assurance requirements.
Based on Ascentor’s advice and guidance, SeeByte UK was able to make informed decisions about the most pragmatic approach to take.
The Office for Nuclear Regulation (ONR) engaged Ascentor to help develop a risk-based assessment methodology for CS&IA inspections of List N facilities.
The findings of our inspections built a risk-informed picture of the maturity of CS&IA arrangements across 26 List N facilities.
The client commented on Ascentor’s “proportionate, pragmatic and flexible approach” which has significantly accelerated ONR’s ability to improve CS&IA-focused regulatory oversight across List N facilities.
This nuclear energy company engaged Ascentor as an independent Design Authority to strengthen cyber security assurance on design projects.
We engaged with a wide group within the business and conducted a cyber security assessment with improvement recommendations in just 20 days.
The client was impressed with our in-depth knowledge of the challenges of delivering cyber security into complex environments and the clarity of our delivery.
This major MOD programme involved development of a complex bespoke system for use in a high threat environment.
Ascentor helped the prime contractor deliver a fully compliant system in accordance with the MOD policy and requirements in just under four months.
The system subsequently achieved full accreditation and Ascentor was asked to support the prime contractor on another project.
This MOD delivery team needed security advice and guidance on an operationally important project demanding highly specialised capability.
Ascentor’s advice and guidance were commended by the accreditor and information asset owner (IAO).
The accreditor commented that the Security Assurance Coordinator (SAC) consultant from Ascentor was: “One of the best SACs I have worked with.”
The MOD needed security advice and guidance for this UOR to core project – used to procure equipment to support military needs in an emergency.
Ascentor assigned one of its qualified CESG Certified Professional Security and Information Risk Advisor consultants to support the project, achieving a successful transition in three months.
The accreditor endorsed the deliverables as well as Ascentor’s pragmatic and cost-effective approach.
Resilient, a pioneering provider of smart voice services, engaged Ascentor to help guide their security improvement and certification journey.
They needed to reduce risk and also wanted customers to have confidence and trust in Resilient as a safe and secure service provider.
Ascentor’s support steered Resilient down a smooth certification path towards a strong security culture – while avoiding the common pitfalls that can waste time, effort and money.
Ascentor helps organisations stay safe through information risk management – and equips suppliers to deliver projects and bid for contracts more successfully.
Whatever your level of information risk, our pragmatic and business focused approach will help you build the appropriate level of response to your cyber security challenges.
Discover our full range of services:
April 13, 2021
January 20, 2020
Your cyber security challenges and our pragmatic approach – we could be the perfect fit. Contact Dave James, MD at Ascentor for an informal chat.