06.2.12
Sapphire Relocates...
From Stockton to Darlington... North England, Thursday 2nd February... more›
M T W T F S S
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29        
             
Previous February Next

Trust Sapphire


To maintain the integrity of the organisation and provide assurance to their clients Sapphire is certified to several industry standards demonstrating a practical approach to industry best practice.

Sapphire has gained certification from the Communications Electronics Security Group (CESG) to provide network security consultancy to government departments wishing to connect to the Government Secure Intranet through the CLAS scheme.

CLAS, the CESG Listed Advisor Scheme of which Sapphire have been members of since its inception. The scheme creates a pool of high quality consultants approved by CESG to provide Information Assurance advice to government departments and other organisations who provide vital services for the United Kingdom. CLAS consultants are approved to provide Information Assurance advice on systems processing protectively marked information up to, and including, SECRET. Visit the CLAS Section of the CESG website for further information.



The organisation is also a member of the CESG CHECK scheme. The IT Health Check Service, or CHECK, was developed byCESG to enhance the availability and quality of the IT health check services that are provided to government in line with HMG policy.

Sapphire is measured against the high standards set by CESG. Therefore, HMG and CNI customers can be assured that they will recieve a high quality service if the work is carried out under the Terms & Conditions of CHECK. For further information, please visit the CHECK Section of the CESG website.



In February, 2006, Sapphire became one of the first organisations in Europe to certify to ISO / IEC 27001, the international standard for Information Security Management. This certification confirms that Sapphire has met stringent criteria in the operation of it's Information Security Management System and is able to verify it's position with an external auditor.

ISO / IEC 27001 is the most recent certification that Sapphire has achieved. The process began in february 2003 with the forensics laboratory achieving BS7799-2 certification. To date, Sapphire's laboratory based on Stockton-on-Tees remains the only certified computer forensics laboratory in the UK.


As well as subscribing to the more established information assurance schemes Sapphire has a vested interest in newly formed user groups and is pleased to be a founder member of the IISP (Institute of Information Security Professionals). The IISP is an independant, non-profit body governed by its members. One of its main roles will be ensuring standards of professionalism for individuals, courses, qualifications and operating practices.

The principal objective of the Institute of Information Security Professionals is to advance the professionalism of information security practitioners and thereby the professionalism of the industry as a whole. By the year 2010 the Institute aims to provide a universally accepted focal point for the information security profession.

One of its main activities is to act as an accreditation authority for the industry, and Membership and Fellowship of the Institute will be the internationally accepted gold standard for information security professionals. Sapphire is a corporate founder member of the Institute of Information Security Professionals (IISP) along with organisations such as Accenture, Barclays Bank, BP, BT, The Bank of England, CESG, Deloitte, Ernst & Young, Halifax Bank of Scotland, PWC, KPMG, The Royal Bank of Scotland, Standard Chartered and Vodafone. Visit the IISP Website for further information.


Since its inception, ISACA has become a pace-setting global organisation for information governance, control, security and audit professionals. Its IS auditing and IS control standards are followed by practitioners worldwide.

The Certified Information Security Manager (CISM) certification uniquely targets the information security management audience and has been earned by more than 10,000 professionals. Sapphire is delighted to have a number of business consultants certified to the standard. For further information, visit the ISACA website.



The Certified in the Governance of Enterprise IT (CGEIT) designation promotes the advancement of professionals who wish to be recognized for their IT governance-related experience and knowledge and has been earned by more than 200 professionals. Sapphire is delighted to announce that Vernon Poole, Head of Business Consultancy has recently been voted onto the ISACA CGEIT (Certified in the Governance of Enterprise IT) Certification Board. Vernon is the only UK representative to achieve this.

The CGEIT certification board provides direction for the CGEIT certification program by ensuring the technical and professional integrity of the CGEIT exam. It also recommends strategic enhancements to the CGEIT certification process. The Board oversees the CGEIT exam and item development process, certification requirements and the continuing education policy. Finally, the Board is responsible for the maintenance and ongoing quality of the CGEIT question item pool. Visit the CGEIT Section of the ISACA website for further information.