Security Alliance is a member of CREST, a not-for-profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry. CREST provides organisations wishing to buy penetration testing and information security assurance services with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence.
Achieving certification in 2010, Security Alliance brings a unique proposition by combining the services of six other CREST member companies. As a result we are able to draw upon a large pool of proficient resources to provide you with a full range of relevant and scalable services.
Working alongside the Bank of England, government and industry, CREST has developed a framework to deliver controlled, bespoke, intelligence-led cyber security tests. STAR (Simulated Target Attack and Response) incorporates penetration testing and threat intelligence services to accurately replicate threats to critical assets.
Security Alliance gained accreditation as a CREST STAR Threat Intelligence provider in July 2015.
The CBEST scheme was created, developed and is run by the Bank of England. CBEST provides a structured and controlled framework for intelligence-led security testing within the financial sector.
Owing to the criticality of the functions and systems within the scope of CBEST, and the level of stability and security required, only organisations assessed and accredited by the Bank of England are permitted to provide CBEST services.
Security Alliance is certified as compliant to ISO 9001 and is committed to the international standard. This standard requires organisations to have a quality management system in place to ensure consistency and improvement of service, leading to high levels of performance and client satisfaction. Certified organisations need to demonstrate continuous improvement and are assessed annually to ensure progress is being maintained.
This accreditation demonstrates another level of assurance that Security Alliance is a reliable, quality driven organisation.
Security Alliance is certified as compliant to ISO 27001. The standard validates our commitment to maintaining the highest standards of quality and information security management across all of the services we provide to you. ISO 27001 sets out how an organisation should approach its information security management project and specifies the essential components.
Recognised internationally, achieving certification provides credibility for those claiming their client’s information is secure.
The Cyber Essentials scheme is a cyber security standard that organisations can be assessed and certified against. It identifies the security controls that an organisation must have in place within their IT systems in order to have confidence that they're addressing cyber security effectively and mitigating the risk from Internet-borne threats, at a basic level.
The scheme focuses on five essential mitigation strategies within the context of the 10 Steps to Cyber Security guide. It provides organisations with clear guidance on implementation as well as offering independent certification. Upon certifcation, an organisation can demonstrate to their customers that they have certain cyber security controls in place.
The G-Cloud framework is an agreement between the government and suppliers who provide cloud-based services. G-Cloud services are divided into 4 categories, or 'lots': Infrastructure as a Service, Platform as a Service, Software as a Service and Specialist Cloud Services.
For G-Cloud, Security Alliance offers CREST STAR engagements, Cyber Threat Intelligence Assessments and the Threat Monitoring Portal as core deliverables through Lot 4: Specialist Cloud Services.