The latest and greatest from Sungard AS



Cyber Security

Sungard Availability Services Enhances its Secure Cloud Infrastructure Credentials with Cyber Essentials Plus Certification

20th November 2017

London, United Kingdom – Sungard Availability Services ® (Sungard AS), a leading provider of information availability through managed IT, cloud and recovery services, announced today that it has been certified with Cyber Essentials Plus for its UK Government Cloud Services offering. 

Cyber Essentials is a UK Government-backed, cyber scheme that helps organisations protect themselves against the most common threats found on the internet.  This provides Public sector buyers looking to procure Sungard AS’ UK Government Cloud Services with added confidence in the company’s cyber security credentials.

To achieve Cyber Essentials Plus, Sungard AS worked with an independent CREST-backed assessor and had to demonstrate that five technical controls are in place:

  1. Boundary firewalls [to prevent unauthorised access]
  2. Secure configuration [setting up systems securely]
  3. User Access control [restricting access to those who need it]
  4. Malware protection [i.e. using anti-virus software]
  5. Patch management [i.e. updating software].

With security vulnerabilities making the headlines on a daily basis, and cyber threats facing public services, the need for cyber security is greater than ever before. In addition to obtaining Cyber Essentials Plus for its UK Government Cloud Services, Sungard AS is committed to offering a host of high quality, resilient cyber security services to assist customers with their IT security strategies and to enable them to meet governance and operational demands, such as penetration testing and vulnerability assessments.

Despite Sungard AS Government Cloud services already meeting the UK Government’s OFFICIAL data security standards, following the 14 cloud security principles as laid out by the National Cyber Security Centre (NCSC), the company wanted the additional ratification for its Government Cloud Services internal and external infrastructure that comes with Cyber Essentials Plus. It is also part of meeting the public sector mandatory requirements for their suppliers to acquire the certification.

Hosted within UK data centres, Sungard AS’ Government Cloud Service is supported by a dedicated UK Sovereign Security-Cleared operations team. Through the combination of consultation, cyber mitigation and Government Cloud Services, Sungard AS can ensure that customers and partners using its services and solutions are fully prepared to deliver secure and robust services required for the public sector.

Commenting on this achievement, Kathy Schneider, CMO, Sungard Availability Services said: “Whilst I have every confidence in the integrity and cyber resilience of Sungard AS’ Government Cloud Service, it means so much more for us, our customers and partners to see this verified by an independent assessor under a UK Government-backed scheme.  Cyber Essentials Plus means that even when the headlines report daily breaches and disruptions and recent research shows that 48% of UK organisations face budget challenges when it comes to security, Sungard AS customers can trust that we’re doing all we can to secure their data and systems.

With Cyber Essentials Plus, PSN Compliance, and ISO 27001 certifications, Sungard AS’ public sector customers can be assured that their availability services partner has a robust, proven and dynamic approach to protect their data, and the people and processes that depend upon it.  With G-Cloud 10 set to require mandatory certification against Cyber Essentials, by obtaining the highest available certificate in Cyber Essentials Plus, Sungard AS continues to meet and evolve its services as the Government’s demands of suppliers evolve and the need to address the challenges of digital transformation in public sector.

About Cyber Essentials and Cyber Essentials Plus

Cyber Essentials is a Government-backed, industry-supported scheme to help organisations protect themselves against the most common threats found on the internet. Most cyber attacks exploit basic weaknesses in software and IT systems: Cyber Essentials shows organisations how to fix those basics and get a good level of cyber security in place.  Whilst the requirements are the same for each certificate, Cyber Essentials Plus offers a greater level of assurance that the controls are in place (e.g. by using a wider range of tools and techniques to test the controls.) Cyber Essentials Plus may be required by procuring organisations seeking a greater level of assurance.