Cyber Assessment Framework
The Cyber Assessment Framework (CAF) has been developed by the UK’s National Cyber Security Centre (NCSC) in order to help organisations assess and strengthen their cyber resilience.
By achieving the outcomes of this framework, organisations will improve their cyber resilience, increase their protection and visibility of critical assets, and will be able to evidence their alignment with national standards.
The CAF, however, is not a guidebook to simply follow. It consists of a set of principles indicating what an organisation should achieve, rather than a step-by-step guide on how to achieve it.
What we offer
We provide CAF consultancy services to ensure that you understand the intended outcomes of CAF, can accurately assess your capability against them, and can then translate the results into action, improving your own cyber resilience. We offer three options for you to select from, depending on your in-house capability and resource
The full works:
A thorough analysis of every aspect of the CAF framework. Detailed recommendations on how to become fully compliant will be provided in an interactive report.
The middle ground:
A thorough analysis of only the technical controls of CAF. Technical findings, areas of strength, and potential improvements will be documented.
The helping hand:
A virtual session in which we discuss just a few of the key questions that have you stumped, or provide general guidance around CAF. Followed by an email documenting key discussion points.
The full works and the middle ground both require time investment from various members of your team. Before agreeing to commence with either service, it is imperative that you understand these requirements and confirm availability of the resource needed.
Resource requirements
The full works consists of a total of 428 questions, while the middle ground consists of 199. We know that aligning to the CAF can be a substantial task if taken on alone. However, with our insight and experience in compliance and security, we can assist you in dramatically reducing the burden on your team through clearly outlining and supporting you with each requirement.
