assuranceESS Advisory Practice offers a full range of independent assessment services of an ICT system or service against its Information Assurance requirements, resulting in the acceptance of residual risk in the context of the business requirements and information risk appetite. These services are offered within clear terms of reference and operational framework to align with business objectives. Accreditation and Assurance Services expand across a wide range of regulatory, industry-specific and best practice frameworks and are delivered by our in-house CLAS team and includes:

  • Provision of qualified IT Security Accreditors
  • Assessment of services against organisational Information Assurance requirements and risk appetite
  • Identification of accreditation and assurance framework
  • Definition of security documentary requirements
  • Management of internal security working groups and assurance activities
  • Mentoring and skills transfer