{"id":6604,"date":"2023-10-20T12:18:18","date_gmt":"2023-10-20T12:18:18","guid":{"rendered":"https:\/\/www.nebrcentre.co.uk\/?p=6604"},"modified":"2023-10-20T12:18:18","modified_gmt":"2023-10-20T12:18:18","slug":"crest-and-iasme-announce-partnership-with-the-ncsc-to-deliver-cyber-incident-exercising-scheme","status":"publish","type":"post","link":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/crest-and-iasme-announce-partnership-with-the-ncsc-to-deliver-cyber-incident-exercising-scheme\/","title":{"rendered":"CREST and IASME Announce Partnership With the NCSC to Deliver Cyber Incident Exercising Scheme"},"content":{"rendered":"\n

CREST and IASME are delighted to announce their partnership with the NCSC to help deliver its new Cyber Incident Exercising scheme. The NCSC (National Cyber Security Centre) has created the scheme to help organisations find high quality providers that can advise and support them to effectively practise their cyber incident response plan. <\/p>\n\n\n\n

The benefits of exercise are clear, and this extends to practising a cyber incident response plan. While practise might not make perfect, it does build resilience. An organisation that rehearses their incident response plan is better placed to respond to cyber attacks and can get back up and running again quicker than those who don\u2019t.<\/p>\n\n\n\n

Organisations wishing to join the CIE scheme will be assessed against the NCSC CIE Standard. CREST and IASME will both manage the assessment, onboarding, monitoring and offboarding of providers assured under the Cyber Incident Exercising scheme on behalf of the NCSC. The organisations were selected for this role because they both meet the NCSC\u2019s high standards and offer a choice for potential providers and different routes into the scheme. <\/p>\n\n\n\n

Dr Emma Philpott MBE, CEO of IASME<\/strong> says, \u201cWe are really looking forward to working with companies of all sizes and in all areas of the UK to deliver this important scheme. We feel strongly about ensuring that the scheme is accessible for smaller cyber security companies to become assured providers and we encourage you to contact us to discuss becoming a provider if this is something that interests you.\u201d<\/em><\/p>\n\n\n\n

Nick Benson, CEO of CREST<\/strong> explains \u201cWe are delighted to be helping deliver this important new scheme for the NCSC by assessing and onboarding Assured Service Providers.<\/em> <\/em>With rising<\/em> <\/em>cyber attacks<\/em> <\/em>on enterprises of all types, effective cyber incident response is one of the most important parts of building cyber resilience. This will give all organisations who want to test their incident response, access to Assured Service Providers who can support them.\u201d<\/em><\/p>\n\n\n\n

The Cyber Incident Exercising scheme provides assurance of companies which deliver two types of cyber exercises to organisations that want to test their existing cyber incident response plans:  <\/p>\n\n\n\n

Table-Top<\/strong> <\/strong>– discussion-based sessions where participants talk about their roles and responsibilities, activities and key decision points (following their organisation\u2019s incident response plan) in relation to a pre-agreed scenario. <\/p>\n\n\n\n

Live-Play<\/strong> \u2013 more in-depth sessions in which participants execute their roles and responsibilities to respond to events in a real world cyber scenario. Activities are tailored to the organisation and take place in close to real-time, providing a realistic simulation of a cyber event. Live play exercises are best suited to mature organisations looking for in-depth validation of plans. <\/p>\n\n\n\n

The scope of the CIE standard covers exercises designed to simulate incidents which have a significant impact on a single client organisation. It does not cover incidents spanning multiple organisations or Category 1 and Category 2 incidents as defined by the <\/strong>UK\u2019s Cyber Attack categorisation system<\/a>.<\/p>\n\n\n\n

The new CIE scheme will launch officially later this year when exercising providers have been assured and on-boarded, ready to offer services.<\/p>\n\n\n\n

For more information about the scheme and how to apply go to:<\/p>\n\n\n\n