The Secure by Design strategy aims to strengthen UK Police Force’s and associated organisation’s cyber resilience and improve data sharing among law enforcement organisations.

The Secure by Design methodology has been chosen to establish a repeatable, structured, and consistent approach to delivering secure solutions across policing, while also ensuring that risks are managed within the defined risk appetite.

Police Secure by Design (SbD) Life Cycle

We offer Secure by Design (SbD) System Development services to UK Police Forces and associated organisations, ensuring continuous assurance of programmes and projects in line with NCSP, NPCC guidance, NCSC CAF, NIST CSF, CSA Cloud Controls Matrix, ISO27001:2002, Data Protection, and the ISF Standard of Good Practice. With over 20 years of experience in continuous risk management for Police Forces and associated organisations, we can be trusted as your SbD providers.

Secure by Design will introduce a number of benefits, including better protection of police data, increased system resilience, improved information sharing and more efficient and effective policing response.

Features include: 

• Risk Assessment, Risk Treatment, Security Management Plan (SMP), Security Case
• Transition from legacy police accreditation processes to Secure by Design
• Liaison with Programme Managers, SIRO, PDS and NPCC
• Audits/reviews using NCSC CAF, NIST CSF, CSA Cloud Controls
• Continuous assurance using Secure by Design, providing through life management
• Cyber Security Policy & Standards Advice, Guidance, Development and Reviews
• Support completion of NPCC SbD risk management self-assessment question sets.
• Delivered by experienced, qualified and NPPV3 Practitioner/Senior/Lead Consultants
• Provision of segregated, transparent Assurance/Accreditor oversight
• Assessment of supply chain risks