CESG Publishes Version 1.1 of the Cyber Security Consultancy Standard

31 Aug 2016 02:57 PM

Updated standard reflects changes to the professional requirements for Head Consultants leading a risk assessment or risk management service.

CESG has published Version 1.1 of the Cyber Security Consultancy Standard. The update reflects changes to the professional requirements for Head Consultants leading a risk assessment or risk management service.

The Consultancy Standard defines the specific requirements that a company will need to demonstrate if they wish to be listed specifically as supplying Certified Cyber Security Consultancy services. It details the requirements of key staff and requires specific evidence in relation to your consultancy lifecycle and delivery of consultancy services.

Head Consultants leading a risk assessment or risk management service, as part of a certified cyber security consultancy application, are no longer required to be a corresponding CESG Certified Professional (CCP), OR a CCP WITH a corresponding professional certification or academic qualification. Instead, the professional requirements of Head Consultants leading a risk assessment or risk management service, can be satisfied by being EITHER a corresponding CCP, OR holding a corresponding professional certification or academic qualification. Acceptable professional certifications and academic qualifications are listed in Section 2.4.4 of the standard.

Applicants are reminded that, as part of a certified cyber security consultancy application, case studies are still required which demonstrate the work undertaken by the Head Consultant.