Gain improved cyber resilience and access to technical specialists with the Cyber Assessment Framework (CAF), designed to provide guidance for organisations like yours that are responsible for vitally important services and activities.
The framework provides a systematic and comprehensive approach to assessing the extent to which essential functions are being securely managed by the organisation. It was developed by the NCSC as a guide for competent authorities to determine if they have properly applied appropriate measures to protect the security of their network and information systems.
Phoenix has worked with organisations across industries and governments to perform CAF assessments, create remediation programmes, and deliver managed services to assure specific outcomes within the framework, and reduce potential financial impact in the event of a data breach.
We provide a wide range of services to support organisations in the application of the CAF across a wide range of sectors. Whether your organisation needs to achieve compliance against NIS Regulations or are just looking to enhance your cyber posture, by aligning with this framework you will achieve and demonstrate a proper level of cyber resilience to manage your security risks.
Provide a suitable framework to assist in carrying out cyber resilience assessments
Maintain the outcome-focused approach of the NCSC cyber security and resilience principles, and discourage assessments being carried out as tick-box exercises
Be compatible with the use of appropriate existing cyber security guidance and standards
Be extensible to accommodate sector-specific elements as may be required
Enable the setting of meaningful target security levels for organisations to achieve, possibly reflecting a regulator view of appropriate and proportionate security
