Search - National Standard Microsite
NCSP Monitoring and Evaluation of Force Information Security Incidents Guideline
This guideline defines the type of cyber and information security incidents which are required to be reported for monitoring and evaluation purposes and the applicable categories
NCSP Secure By Design (SbD) Guideline V1.1
This document provides detailed guidance to support the National Community Security Policy (NCSP) system development (Secure by Design SbD) standard. Secure by Design as a methodology has been selected to ensure that a repeatable, structured, and consistent approach to the secure delivery of solutions across policing is achieved, as well as ensuring that risks are managed within risk appetite.
NCSP Technical Security Management Standard v1.1
This Standard specifies the minimum requirements regarding technical security management. It describes the requirements to enable members of the community of trust to build and operate an effective technical security infrastructure, applying security architecture principles and integrating technical security solutions, such as malware protection, intrusion detection and cryptography
NCSP Physical Asset Management Standard v1.1
This standard aims to ensure that physical assets are acquired securely, configured properly, maintained regularly, and disposed of safely and securely, while ensuring the confidentiality, integrity, and availability of the information they handle. By adopting this standard, organisations can ensure that they are protecting their assets against potential threats, mitigating risks, and complying with regulatory requirements.
NCSP Internet connection guideline v1.0
This guideline covers recommendations for the commissioning and use of internet connections, with a specific focus on the requirements of the Law Enforcement Community Network (LECN).
NCSP Information Management v1.1
This standard defines the requirements to implement Information Management as mandated in the National Community Security Policy. It encompasses the management of policing information within the OFFICIAL tier of the Government Security Classification model
NCSP Electronic Conferencing Guideline v1.0
This guideline provides the policing community with advice on the use of communication software such as e-conferencing.
NCSP Cyber Incident Management Standard v1.2
This Standard specifies the minimum requirements regarding cyber threat and incident processes and actions. It aims to provide members of the policing community with clear direction to manage incidents associated with cyber-attacks and cyber incidents
NCSP Cryptography Standard v2.1
This standard sets out the Cryptographic Algorithms to be used within policing. A list of algorithms is provided initially followed by applications and the associated cryptography required for each application. Finally the standard provides some commentary on the emerging cryptography for post quantum computing and lightweight computing.
This standard adheres to the National Policing Community Security Policy Framework and is a suitable reference for community members, notably those who build and implement IT systems on behalf of national policing.
NCSP Application Management Standard v1.1
This standard is intended to guide the reader through the process of securely managing business applications, both internally developed and externally sourced, regardless of whether locally installed or cloud based. Centred around stocktaking, documenting and actively managing those applications, this standard should enable the visibility of all business utilised applications, ensuring all are appropriately assessed for risk, appropriately controlled, and managed in such a way as to not introduce cyber security risk going forward.