CESG Listed Adviser Scheme

Last updated
Claslogo.gif

The CESG Listed Adviser Scheme was a programme run by CESG, to provide a pool of information assurance consultants to government departments and other public-sector bodies in the UK. [1]

Contents

CLAS consultants advised on systems that handle protectively marked information, up to and including SECRET; [2] for instance, they may have advised on GSI accreditation. [3] CLAS consultants held a security clearance, at least SC. [4]

CLAS consultants developed risk assessments in line with IS1, and risk management and accreditation document sets (RMADS) in line with IS2. [5]

In 2011, entry to CLAS was closed [6] while a replacement system was being designed.

By 2013 'new' CLAS was implemented and open for membership. [7] 'New' CLAS required that members were CESG Certified Professionals.

CLAS was closed in January 2016.

CESG Certified Professionals (CCP)

The CESG Certified Professional (CCP) scheme recognises the expertise of those working in the information assurance and cyber security arenas in both government and industry. [8] It sets the standard for IA professionals working in this sector and provides a rigorous and independent assessment of the competence of IA professionals. CCP status is an endorsement of IA expertise and confirms that information risk in support of your business is managed in a balanced and pragmatic way.

Now that CLAS has closed, CCP is the only CESG-approved credential that applies to individual professionals rather than companies.

Related Research Articles

Professional certification, trade certification, or professional designation, often called simply certification or qualification, is a designation earned by a person to assure qualification to perform a job or task. Not all certifications that use post-nominal letters are an acknowledgement of educational achievement, or an agency appointed to safeguard the public interest.

The Common Criteria for Information Technology Security Evaluation is an international standard for computer security certification. It is currently in version 3.1 revision 5.

<span class="mw-page-title-main">Environmental consulting</span>

Environmental consulting is often a form of compliance consulting, in which the consultant ensures that the client maintains an appropriate measure of compliance with environmental regulations. There are many types of environmental consultants, but the two main groups are those who enter the field from the industry side, and those who enter the field from the environmentalist side.

CCP most commonly refers to the Chinese Communist Party, the sole ruling party in the People's Republic of China.

The Certified Financial Planner certification is a professional certification mark for financial planners conferred by the Certified Financial Planner Board of Standards in the United States, and by 25 other organizations affiliated with Financial Planning Standards Board (FPSB), the owner of the CFP mark outside of the United States. The certification is generally considered the gold standard in the financial planning industry. The certification is managed by the Certified Financial Planner Board of Standards, Inc., which was founded in 1985 as a 501(c)(3) non-profit organization; it is neither a government designation nor an accredited degree.

<span class="mw-page-title-main">Certification</span> Formal confirmation of certain characteristics of an object, person or organization

Certification is part of testing, inspection and certification and the provision by an independent body of written assurance that the product, service or system in question meets specific requirements. It is the formal attestation or confirmation of certain characteristics of an object, person, or organization. This confirmation is often, but not always, provided by some form of external review, education, assessment, or audit. Accreditation is a specific organization's process of certification. According to the U.S. National Council on Measurement in Education, a certification test is a credentialing test used to determine whether individuals are knowledgeable enough in a given occupational area to be labeled "competent to practice" in that area.

<span class="mw-page-title-main">Product certification</span> Performance and quality assurance

Product certification or product qualification is the process of certifying that a certain product has passed performance tests and quality assurance tests, and meets qualification criteria stipulated in contracts, regulations, or specifications.

<span class="mw-page-title-main">Internal audit</span> Independent, objective assurance and consulting activity

Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes. Internal auditing might achieve this goal by providing insight and recommendations based on analyses and assessments of data and business processes. With commitment to integrity and accountability, internal auditing provides value to governing bodies and senior management as an objective source of independent advice. Professionals called internal auditors are employed by organizations to perform the internal auditing activity.

Information assurance (IA) is the practice of assuring information and managing risks related to the use, processing, storage, and transmission of information. Information assurance includes protection of the integrity, availability, authenticity, non-repudiation and confidentiality of user data. IA encompasses both digital protections and physical techniques. These methods apply to data in transit, both physical and electronic forms, as well as data at rest. IA is best thought of as a superset of information security, and as the business outcome of information risk management.

Government Secure Intranet (GSi) was a United Kingdom government wide area network, whose main purpose was to enable connected organisations to communicate electronically and securely at low protective marking levels. It was known for the '.gsi.gov.uk' family of domains for government email. Migration away from these domains began in 2019 and will be completed in 2023.

The CESG Claims Tested Mark, formerly CSIA Claims Tested Mark, is a UK Government Standard for computer security.

Lexcel is an accreditation indicating quality in relation to legal practice management standards. It was introduced by The Law Society of England and Wales in 1998. Until 2010, the Lexcel standard was attainable by law firms and in-house legal departments in England and Wales. A separate franchised scheme was available for practices in Northern Ireland. Since September 2010, Lexcel accreditation has been attainable by any law firm or in-house legal department in any jurisdiction in the world. The worldwide scheme continues to be administered by the Law Society of England and Wales.

Higher education accreditation is a type of quality assurance process under which services and operations of post-secondary educational institutions or programs are evaluated to determine if applicable standards are met. If standards are met, accredited status is granted by the agency.

HMG Information Assurance Standard No.1, usually abbreviated to IS1, was a security standard applied to government computer systems in the UK.

<span class="mw-page-title-main">DNV</span> Certification body and classification society

DNV is an international accredited registrar and classification society headquartered in Høvik, Norway. The company currently has about 12,000 employees and 350 offices operating in more than 100 countries, and provides services for several industries including maritime, oil and gas, renewable energy, electrification, food and beverage, and healthcare. DNV GL was created in 2013 as a result of a merger between two leading organizations in the field — Det Norske Veritas (Norway) and Germanischer Lloyd (Germany). In 2021, DNV GL changed its name to DNV, while retaining its post-merger structure.

The Security Policy Framework is a set of high-level policies on security, mainly affecting the UK government and its suppliers.

The Chartered Institute of Information Security (CIISec), formerly the Institute of Information Security Professionals (IISP), is an independent, not-for-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.

The cyber security community in the United Kingdom is diverse, with many stakeholders groups contributing to support the UK Cyber Security Strategy. The following is a list of some of these stakeholders.

<span class="mw-page-title-main">International Council of Management Consulting Institutes</span>

The International Council of Management Consulting Institutes (ICMCI) has since 1987 been the professional body worldwide for management consultants. ICMCI since 2013 is called CMC-Global.

Cyber Essentials is a United Kingdom certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification.

References

  1. "CESG Listed Adviser Scheme (CLAS) - What is CLAS?". Archived from the original on 2010-05-01. Retrieved 2010-11-02.
  2. "CLAS - CESG Listed Adviser Scheme - VEGA Consulting Services". Archived from the original on 2010-08-17. Retrieved 2010-11-02. protect
  3. "NTA Monitor - Services - consultancy". 2010-10-14. Archived from the original on 2011-07-14. Retrieved 2010-11-02.
  4. "CLAS Consultancy" . Retrieved 2010-11-02.
  5. "CESG Listed Adviser Scheme - Commissum". 2010-11-02. Archived from the original on 2010-11-20. Retrieved 2010-11-02.
  6. "Applying for CLAS Membership". Archived from the original on May 19, 2011. Retrieved 2011-07-31.
  7. "New CLAS". Archived from the original on 2013-08-04. Retrieved 2013-08-12.
  8. "CESG Certified Professional". Archived from the original on 2014-01-01. Retrieved 31 December 2013.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.