CYBERSHIELD SECURE SERVICES
A proven methodology delivering customer-focused solutions
At Nexor, we believe a solution can only be a success if the business context and problem space is properly understood.
To ensure this is achieved we have developed CyberShield Secure, a consultative delivery methodology for working with our customers. It has been designed to put the customer’s business requirements and security constraints at the heart of any engagement and is based on industry best practice for secure engineering.
Our methodology is focused on understanding the customer’s wider operational context and information needs, which can then drive the design of the most appropriate solution.
Our service capabilities
There are three core parts to our methodology:
- Technology Integration.
Our consulting capability allows Nexor to work in partnership with the customer to understand the business context and secure information exchange needs.
The engineering offering provides a secure development capability to build new functionality, if required, in a secure fashion.
The final piece in the methodology is the technology integration capability. This focusses on bringing together all of the components to ensure the solution integrates seamlessly into the business processes and the wider enterprise architecture, and to train the operational and supporting staff.
Trusting the solution
As part of our commitment to delivery excellence, we invest in our certificated process set to ensure that all our solutions meet the customer’s needs in a secure, repeatable, scalable and extendable fashion.
To ensure that these processes are robust and follow industry best practice, we open up our business to independent audit in all areas, providing transparency and trust in all that we do.
Accreditations we hold include:
- ISO 9001 Quality Management system certification;
- ISO 27001 Information Security Management System certification;
- TickITplus Software Quality Management certification (first in the world to achieve this!);
- Cyber Essentials (achieved as one of just six companies in the very first batch of organisations to certify).
We were also a contributor and industry launch partner of the software standard PAS 754 – “Software Trustworthiness – Governance and management – Specification” developed by the Trustworthy Software Initiative (TSI).
RECENT BLOG POSTS
The NCSC (National Cyber Security Centre) published 14 cloud security principles in 2016. These principles are designed to give guidance to cloud service providers in order to protect their customers. But do the customers themselves have a responsibility for their own security? Nexor investigates the role of the customer in keeping their data secure.
Traditionally, our approach to managing cyber security risks has been ‘static’ – in the sense that the threat analysis, risk assessment and treatment plan are performed as manual operations ‘up front’ of solution deployment – usually as part of a Secure Development Lifecycle (SDL) – such as Nexor’s CyberShield Secure Development methodology.
For our 2017 Christmas greetings we ran a Nexor Treasure Hunt asking our customers to find the link between Nexor and the buildings in the images below.
Be the first to know about developments in secure information exchange