Wednesday 6 January 2016

Security Assurance for DWP and PeoplePlus Partners

Agility offer a full range of information security services to assist DWP and PeoplePlus partners in securing their organisation to the stringent level required by the Department for Work and Pensions (DWP) and PeoplePlus (formerly Action for Employment, A4e). Our services include penetration testing, ISO 27001 ISMS, social engineering and information assurance due diligence reviews.

PeoplePlus requires its partners to engage an independent reputable specialist company, experienced in Information Security services, to undertake penetration testing of their infrastructure and applications. Security testing should therefore be performed by a company that is not connected in any way with the provision of Work Programme Partner Information Systems and Services.

Agility meets these requirements being recognised by CREST (the Council of Registered Ethical Security Testers), with our consultants holding ICE and ACE qualifications as CREST Certified Testers (CCT). We have many years of experience in delivering all the services necessary to support the security requirements mandated by Government Departments and their partners.

Testing is not limited to technical vulnerabilities but also examines the settings and features of user access to the Partner Work Programme Information, which could allow misuse of authorised access to perform unauthorised actions, and also extended to physical security and social engineering.

The governance and testing requirements imposed by PeoplePlus are designed to reduce risks that pose a threat to the confidentiality of PeoplePlus and DWP data being held or processed on Partner Work Programme Information Systems and Services. Contact us for further details of our services.