Kamil Erkadoo

Empathy is an important skill for a consultant, not just technical and professional acumen. Find consultants with an open mind, who are willing to make an effort to understand your problems/challenges and tailor solutions that meet your needs. I would advise caution if you come across a consultancy who assures you that they have the answers you need before asking you any questions.

9

NHS DSPT Mandatory Audit Assertion 7.3 — Incident Response Capability Assertion 7.3 of the NHS DSPT is all about incident response. Discover how to detect, contain, and recover from cyber incidents quickly and effectively.

1

Edge Case provided critical safety analyses for Guardian that were instrumental in achieving MIL-STD-882E compliance Read how our DevSafeOps approach helped Guardian take flight: https://lnkd.in/e8nwy3yP

15

Translating new regulatory standards into a sustainable cyber strategy is now a priority for organisations across the UK’s Critical National Infrastructure. As threats escalate and compliance requirements expand, keeping pace with both IT and OT is no longer optional. From IEC 62443 and the Cyber Security and Resilience Bill to the updated NIS regulations, the scope of responsibility continues to grow. Our four phase approach, aligned to the NCSC Cyber Assessment Framework, helps Operators of Essential Services and their supply chains move beyond basic compliance towards long term resilience. Governance, risk management, supply chain assurance, zero trust access, continuous monitoring, and tested response plans all play a defined role in building a secure and sustainable foundation. You can read the whole whitepaper here: https://lnkd.in/eaVqCPyM If you would like to understand how these standards apply to your organisation and where the key gaps and opportunities may lie, speak to our CNI specialists today: https://lnkd.in/e6Wubm_y #CyberSecurity #CriticalNationalInfrastructure #CNI #NISRegulations #IEC62443 #CyberResilience #RiskManagement #OperationalTechnology #InformationSecurity #UKBusiness

26

🚨 Strengthening cyber resilience: Amiqus joins forces with Cyber and Fraud Centre - Scotland As a Scottish-born company, we’re proud to collaborate with CFCS - Scotland’s only cyber social enterprise committed to tackling cyber and fraud risks across industries. 🤝 Peter M., GRC and Security Lead at Amiqus, has already been working closely with the CFCS team, delivering workshops on third-party risk management and supporting recent events at the Scottish Parliament. 💬 “This is an exciting opportunity to work alongside some incredible people and drive forward security best practices,” says Peter. 🔗 Read the full update here: https://lnkd.in/et-bmRVG

31

2 Comments

Ready to take control of your cybersecurity - without the jargon or headaches? Our latest blog breaks down the Cyber Essentials checklist into practical steps you can actually use. From firewalls and patching to access control and malware defence, simply follow the path to certification and protection. Drop the stress. Grab your guide. Get Cyber Essentials done. Read more: https://lnkd.in/eGnxY6ks

1

Proud to be part of the cybersecurity leadership at ServiQual. At SQ, cybersecurity is not handled by a single role, it is delivered by a structured and specialised team working together to protect our SQ and clients’ environments. Our Cybersecurity Department includes: • IT Audit & Compliance • Red Team (Offensive Security, VAPT) • Blue Team (Defensive Security & Monitoring) • Purple Team (Threat Simulation & Security Improvement) • Security Operations Centre (SOC) • Digital Forensics & Incident Investigation • CISO providing governance, strategy and risk oversight This multidisciplinary approach allows us to combine governance, detection, response and resilience to support organisations in building secure-by-design infrastructures. A special thanks to Hamza Seedat and my team for their continuous support and collaboration in strengthening our cybersecurity capabilities.

12

We're pleased to share a positive outcome for one of our local authority clients following a recent targeted cyberattack. Working alongside our trusted partners, we completed initial investigations and can confirm that of the 47 employees targeted by Russian-based cyber aggressors, strong user passwords and robust defence systems held firm, resulting in no breach. Our 24/7 monitoring team remains on high alert, and we’ll continue to support and safeguard our client as the situation evolves. Cyber resilience is a team effort and today, it paid off. 🔐 #Cybersecurity #CyberAttack #CyberResilience

7

More detail on the DCC has been released by IASME, including importantly the question set which will be used to assess companies aiming for DCC Level 1, 2 or 3. Initial thoughts: 📋 There are A LOT of questions - 242 for L1 up to 349 for L3. 🧠 Significant knowledge will be needed to answer the questions - some of them are very detailed (e.g. "Does the organisation use Transport Layer Security (TLS) version 1.1 or earlier for protecting any sensitive data in transit?" - spoiler - the answer should be "No"). 💻 As the DCC is effectively a compliance wrapper around DefStan 05-138 issue 4, the questions assess not just technology but also policy, process, training, governance, etc. So what? It's now even more clear that organisations are going to need help getting to the standard - either to achieve DCC or to be compliant with the DefStan. The AEGIS service we've developed at Nova Blue Technologies is designed to give organisations the help they need. Get in touch for more information and to arrange your free readiness assessment.

10

We’re partnering with Chartered Institute of Information Security (CIISec) for #Infosec2025! CIISec is the only dedicated cyber and information security body with Royal Charter status. With 15,000+ members, CIISec supports professionals at every career stage through development, recognition and industry-wide standards. Learn more about the latest developments in the cybersecurity industry at Infosecurity Europe, 3-5 June: http://spkl.io/6048fITGk #cybersecurity #informationsecurity

19

What Is Integrated Security? Complete Guide for 2025 Integrated security explained: discover its core concepts, types, system components, benefits, risks, and implementation in the UK security sector. #securityjobs #securityjobsboard #secuirtyindustry #cvs #securityprofessionals Read more at: https://lnkd.in/ezyUMTmj

2

🚀 Strengthening the UK's Defence Supply Chain Through Assured Cyber Security Proud to spotlight Hexegic’s continuing leadership in UK defence and cyber security, supporting organisations as they navigate evolving regulatory requirements and rising cyber threats. 🔐 As one of only five Certification Bodies selected to support the Ministry of Defence’s new Defence Cyber Certification (DCC) scheme, Hexegic plays a pivotal role in helping suppliers meet the rigorous security standards now required across the defence ecosystem. Developed by the MoD and IASME, the DCC replaces legacy self‑assessment questionnaires with independent, audited certification based on Def Stan 05‑138 — ensuring suppliers implement, evidence, and maintain robust cyber security practices relative to the risk profile of each contract. 🛡️ What Hexegic Brings As an accredited Certification Body, Hexegic works directly with defence contractors to: Assess and certify organisations against DCC requirements Guide suppliers through the practical steps needed to achieve compliance Support ongoing cyber maturity with structured annual check‑ins Help businesses maintain their competitive edge in a security‑driven marketplace 📊 About the DCC Scheme Mandatory (or contractually required) for many MoD suppliers Valid for three years, with yearly reviews Covers four certification levels — from Level 0 (Basic) to Level 3 (Expert) Designed to strengthen supply chain resilience and align with national security best practice 💼 Why This Matters With increasing threats and complex supply chains, strong security assurance is no longer optional. DCC provides a clear, accredited pathway for suppliers to demonstrate trustworthiness, protect sensitive information, and meet government expectations. Hexegic is proud to support this mission — helping organisations across the defence sector build, prove, and sustain the cyber resilience that keeps the UK secure.

15

Supply chain cyber security is now a top priority for the UK public sector. Download our new white paper to understand the ins and outs of the the Government Cyber Security Strategy (GCSS), regulatory expectations as they relate to third-party risk management, and how to build a more resilient supply chain ecosystem with Risk Ledger. 📘 Download the new guide to: ✅ Understand what GCSS & CAF mean for your organisation ✅ Learn how to put the principles into practice ✅ See how our supplier assessment framework maps against the GCSS https://hubs.la/Q03rR_JG0

5

Offshore doesn’t mean lower standards There’s a misconception that offshore SOCs compromise security. It doesn’t have to be true. We operate an offshore SOC aligned with: UK security standards ISO 27001 expectations SOC 2 evidence requirements #soc #offshoresoc #cybersecurity

18

1 Comment