Example Query:
What security accreditations do you have and how do you comply with 14 NCSC cloud security principles? We resell you product and have been asked by our clients to provide this.
Example Response:
Please find attached a PDF containing our answers on the 14 NCSC cloud security principles.
We currently do not carry ISO27001, Cyber Essentials etc; however we are going through the process of being audited for official certification later this year.
While we may not have the ISO27001 accreditation, we do employ an ISMS that aligns to the ISO27001 process documentation, augmented with our own technical controls working together with our infrastructure vendors (AWS, Azure).
I hope this provides the answers you require, but please do let me know if you have any questions regarding this.
** Any further queries, should be communicated and confirmed by Gareth Lockwood. **
There will be a PDF Attached with a breakdown of the 14 NSCS principles. This is a generic evaluation, and can be sent to customers. HOWEVER, if you are ever unsure about the queries, PLEASE check in with a senior, Pat or Gareth L to not miscommunicate anything.