Tuesday 09 Feb 2016 @ 14:15
CESG
Printable version

Planned changes to CESG's charging model

Part of a number of initiatives aimed at achieving better focus on HMG's national security policies.

Following the Strategic Defence and Security Review (SDSR) and announcement of the establishment of a National Cyber Centre as part of GCHQ, CESG is working towards reforming the charging regime for some of our services from the beginning of the new Financial Year. This policy change is part of a number of initiatives aimed at achieving better focus on HMG's national security priorities.

It is currently the intention (though this policy may be extended to other services in due course) to stop recovering full costs for the following services:

  • IA Consultancy and Advice for Government customers or in pursuance of the Government's national security priorities
  • CESG Assisted Products Service (CAPS)
  • TEMPEST

Specific details are still being worked through and in certain circumstances, some chargeable elements will remain (eg if there is any exchange of IPR, where CESG is asked to buy specific equipment for you to use, or to maintain consistency with other service offerings).

However, we are pleased to announce that in relation to:

  • IA Consultancy and Advice for Government customers
  • CAPS Pre-Evaluation Consultancy and Advice (and Fit for Purpose Evaluation)
  • CAPS Cryptographic Evaluation (including Bugfix)
  • IA Consultancy and Advice provided in the context of the CESG Formal TEMPEST Certification Scheme (including TEMPEST training)

the following arrangements will apply:

  • any new work agreed following the beginning of the Financial Year (FY) 16/17 will no longer be invoiced
  • any work already in progress, or agreed before the end of FY 15/16, but which will not be completed until sometime during 16/17 or a later FY, will be invoiced for any costs incurred until the end of 15/16 (in practice this may mean payment occurs in FY 16/17)
  • there will continue to be a written process for confirming the scope of the work to be undertaken free of charge and setting out the roles and responsibilities of CESG and the recipient customer

In relation to:

  • CAPS In-Service Assurance (CISA)
  • CPTAS (CESG Platform TEMPEST Accreditation Scheme)
  • CFTCS (CESG Formal TEMPEST Certification Scheme)

we will be contacting customers to discuss proposed changes to existing contracts and other relevant paperwork.

Any services offered by CESG will remain subject to CESG prioritisation, guided by HMG's national security priorities, and resource availability.

Please address any queries you have to your Customer Relationship Manager in the first instance, or to CESG enquiries on 01242 709141 or email enquiries@cesg.gsi.gov.uk

 

Channel website: https://www.ncsc.gov.uk/

Share this article

Latest News from
CESG

Keynote address to FT Cyber Resilience Summit 2025

04/12/2025 16:15:00

Security Minister Dan Jarvis's speech given yesterday at 22 Bishopsgate on the government's action to tackle cybercrime.

Bargain hunters urged to stay alert to cyber scams ahead of holiday shopping season

17/11/2025 11:15:00

The latest Stop! Think Fraud campaign provides practical advice to help individuals stay secure online

NCSC statement: Incident impacting Jaguar Land Rover

05/09/2025 15:20:00

Statement from the NCSC regarding the cyber incident affecting Jaguar Land Rover.

UK and allies expose China-based technology companies for enabling global cyber campaign against critical networks

28/08/2025 11:05:00

The NCSC and international partners share technical details of malicious activities and urge organisations to take mitigative actions.

Prison for fugitive heroin smuggler who used encrypted phone to hide his identity

28/07/2025 16:15:00

A heroin trafficker caught after going on the run from the National Crime Agency (NCA) has been jailed for 12 years and seven months.

UK to lead crackdown on cyber criminals with ransomware measures

23/07/2025 09:15:00

Measures to tackle the threat of ransomware and protect businesses and critical services will be taken forward with industry following public consultation.

New assurance initiatives to help boost confidence in cyber resilience

09/05/2025 10:25:00

Two initiatives designed to raise national cyber resilience announced at the NCSC's CYBERUK 2025 conference.

Preparing for post-quantum threat will make "fixing the Millennium Bug look easy"

08/05/2025 13:15:00

NCSC's CTO urges organisations to recognise “decade-long, national-scale technology change” required to prepare for the post-quantum threat.

UK pioneering global move away from passwords

08/05/2025 12:15:00

Government to roll out passkey technology across digital services as an alternative to SMS-based verification.