NCC Group Consultants act as trusted advisors to clients on a wide variety of issues across the public, private and
not for profit sectors.
Our Information
Security and Technology Consultants advise on all aspects of IT, business
processes and information security, from small scale projects to
national programmes involving multiple parties and projects which span
multiple continents.
We ensure our clients manage their information assets securely and
are fully protected by planning and implementing appropriate business
continuity and disaster recovery strategies and ensuring sound
governance and compliance with appropriate legislation and regulatory
drivers.
We specialise in ensuring our clients are supported by and gain
maximum advantage from robust, cost effective and secure ICT and
business processes which are closely aligned to their business
objectives. The key business drivers are efficiency, return on
investment, performance, competitive advantage and value for money.
Key benefits of working with NCC Group Advisory
- Guaranteed independence: NCC Group has no commercial allegiance to suppliers of technology solutions. You can be confident that our advice will be impartial, uninhibited and focused on your organisation’s goals
- Substantial and proven track record: We have ongoing experience of working with high-profile multi-national blue chip organisations. We have a track record of successfully delivering numerous assignments for clients throughout the financial, retail and public sector, providing information assurance through security consultancy and security testing projects
- Total understanding: With a wealth of expertise across different sectors, we are often retained by our clients as a “Trusted Advisor” to provide recommendations on systems and technologies as well as information assurance and risk management
- Experience: We only employ senior consultants with many years’ industry experience. You can rest assured that the advice we provide is pragmatic, proven and applicable
- Diverse skill base: We have a broad in house pool of resources, including industry experts in strategy, procurement, information security, business continuity and risk management
- Proven quality: We are one of the few advisory firms who carry the ISO 27001 accreditation. This means that, not only do we practice what we preach, but we also have invaluable experience of what is required to bring an organisation into line with an internationally accepted security standard – from the organisation’s perspective, not simply as advisors.
Our advisory services include:
ISO 27001
Effective information security management ensures that the confidentiality, integrity and availability of information held throughout your organisation is preserved.
ISO 27001 is the information security standard that is now the benchmark for global best practice. This two-part standard refers to both electronic and paper-based information, and covers a wide range of security considerations including personnel, the physical environment, business continuity planning and systems access, development and maintenance.
Data Protection
Any organisation that collects, retains, processes, distributes & disposes of personal data is subject to the requirements of the Data Protection Act (1998). To assist organisations in complying with the DPA principles, BSI, has published a new standard, BS 10012:2009 “Data Protection – Specifi cation for a Personal Information Management System”.
NCC Group’s experienced information security consultants will guide you through compliance to BS 10012:2009, providing independent, professional advice to help you ensure your organisation is operating effi ciently, effectively and securely.
PCI DSS & PA-DSS
Any organisation that transmits or processes payments by credit or debit card is required to comply with the Payment Card Industry Data Security Standard (PCI DSS).
PCI DSS is a set of technical, procedural and physical security control requirements for organisations processing credit and debit card transactions. The standard is designed to protect consumer data by ensuring all organisations securely store, transmit and process customer data to prevent theft or loss.
Risk Management
Risk management is intrinsic to any organisation’s strategic management and should be considered a core business process that is reviewed and updated on a regular basis. It enables an organisation to identify any potential risks it may face, analyse the potential impact of these risks and then work out the best way to address the impact.
A sound risk management strategy will not eliminate risk altogether, but it will aid an organisation in managing risks, enabling it to maximise opportunities and minimise any unfavourable effects.
At NCC Group, we can help you to understand the risks your organisation faces, the regulatory requirements placed upon it surrounding IT, information security and corporate governance, and the implications of non-compliance.
Business continuity management
In an increasingly risk-aware environment, Business Continuity Management (BCM) is an important component of strategic planning for all organisations.
Major high-profile events like terrorist attacks, flu epidemics and natural disasters all push business continuity and emergency planning to the forefront of people’s minds. But when they drop out of the news and things return to normal, some organisations still find themselves being caught out through more mundane but potentially damaging incidents such as technical failure or loss of key staff or premises.
ITIL
Even short periods of employee ‘down-time’ caused by system problems can quickly add up to many hours of lost productivity, costing the organisation in economic terms but also causing inconvenience and disillusionment amongst both employees and customers.
Many successful organisations have used IT Infrastructure Library (ITIL) to improve the quality of their IT service support and delivery. ITIL provides the foundation for quality IT Service Management, and is the world’s most widely accepted approach to IT Service Management, providing a cohesive set of best practice processes.
Enterprise Architecture
Enterprise architecture services are aimed at aligning an organisation’s IT function and business functions in an efficient and sustainable fashion.
NCC Group consultants analyse information governance, technical and application architecture to ensure that they support the business aspirations of the organisation and enable significant progress in the drive for improved customer services, greater operational efficiency and reduction in operational cost.
Web Accessibility
Web Accessibility is often seen as the socially acceptable ‘right thing to do’, but many organisations also see clear financial benefits and a good return on investment.
NCC Group has developed its ‘Web Accessibility Service’ to help organisations improve their Web Accessibility and get the most from their web sites.
Call +44 (0)161 209 5288 today for more information.