Our services
Qi Consulting offers a unique blend of management and technical expertise and proven understanding of public service issubusiness and technical specialisms.
The main areas where Qi's consultants are deployed are in:
- Strategy and Business Planning
- Programme and Project Management
- Gateway™ Reviews
- Business Change and Organisational Development
- Sourcing and Contract Management
- Interim Management
- Marketing and Communications
- Security Consultancy
- ICT Consultancy
Service: Security consultancy
We have specific expertise in security consultancy and advice. Qi Consulting and our specialist partners provide security services to the public sector, including central civil government, agencies, the health sector, local authorities, defence, Criminal Justice and NDPBs. We support, promote and comply with the best practice guidance produced by CESG (the National Technical Authority for Information Assurance), government and industry. Some of our consultants have been directly involved in the development of government best practice guidance in security issues.
We have access to the CESG Listed Adviser Scheme (CLAS), which provides a pool of approved private sector consultants who give advice to HMG standards.
Our key strengths are:
Planning and design
- Physical security management, including Business Continuity Planning, Disaster Recovery, Command and Control, Personnel Screening
- Authentication services planning analysis and design, including where required evaluation and selection of product vendor offerings and solutions
- Business systems and technical architecture design
- Firewall and intrusion detection systems design to meet GSi/CJX codes of connection and to meet government/CESG technical assurance
- Secure remote access services assessment and options evaluation
Testing
- Security Standards compliance auditing - best practice configuration reviews, best practice audits, source code auditing
- Penetration testing - external penetration testing, internal penetration testing, application testing and bespoke testing
Investigative services
- Computer forensics
- Network forensics
- Data recovery
- Document examination
- Personal Digital Assistant (PDA) examination
- Mobile phone examination
- Sat Nav examination
- Expert Witness testimony
- Government Data Handling advice and consultancy
Best practice
- Our consultants follow government and industry best practice, including:
- HMG Infosec standards methods and approaches
- CRAMM risk assessment method (where the client requests)
- ISO27001 Toolkit.
- ITIL security management processes and techniques
- CESG CHECK Scheme, OWASP & OSTTM
- ACPO Best Practice Guide to Electronic Evidence
- Management of Risk (M_o_R)
Partners:
Activity Information Management
Convergent Network Solutions
Cranfield University, The Defence Academy of the United Kingdom
Mentis Management Consultants
Praemunitus
