to add a new content
Resource
National Community Security Policy Framework v1.4

This framework provides all national policing and its partners with a clear guide of how information security policies and standards work in national policing, the objectives of the framework, whom the framework and its supporting policy and principles apply to, whom has accountability for information security and risk and how policies will be governed.

Published 01/09/2024
Authoring body: Police Digital Service (PDS)
Policy
Resource
National Policing Community Security Policy Framework v1.3

This framework provides all National Policing and its partners with a clear guide of how information security policies and standards work in National Policing, the objectives of the framework, whom the framework and its supporting policy and principles apply to, whom has accountability for information security and risk and how policies will be governed.

Published 01/10/2023
Authoring body: Police Digital Service (PDS)
Policy
Resource
NCSP Cryptography Standard

This standard sets out the Cryptographic Algorithms to be used within policing. A list of algorithms are provided initially followed by applications and the associated cryptography required for each application. Finally the standard provides some commentary on the emerging cryptography for post quantum computing and lightweight computing.
This standard adheres to the National Policing Community Security Policy Framework and is a suitable reference for community members, notably those who build and implement IT systems on behalf of national policing

Published 01/07/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
System Access annual review

This standard defines the requirements which, when applied, will prevent unauthorised access to national policing IT systems. Areas considered include account management, access control mechanisms e.g. biometrics and customer access.
This standard adheres to the National Policing Community Security Policy Framework and is a suitable reference for community members, notably those who build and implement IT systems on behalf of national policing.
This standard also relates to other PDS standards passwords and IAM, which the audience should also consider.

Published 01/07/2024
Authoring body: Police Digital Service PDS
Standards
Resource
Identity & Access Management Standard annual review

This standard defines the requirements which, when applied, will define identity and access management standards to national policing IT systems. Areas considered include account management, access control mechanism, privilege access, account provisioning, account review, access suspension and termination, guest accounts, third party access and audit requirements.
This standard adheres to the National Policing Community Security Policy Framework and is a suitable reference for community members, notably those who build and implement IT systems on behalf of national policing.
This standard also relates to other PDS standards such as passwords, system access, PAM, vetting, which the audience should also consider

Published 01/06/2024
Authoring body: Police Digital Service PDS
Standards
Resource
Third Party Assurance for Policing (TPAP)

This Standard is to ensure that all third party suppliers are examined to fully understand their overall security posture and how that may impact upon Policing, ensure they fully understand the responsibilities they have in looking after policing data, that elements such as the importance of vetting and the cyber security of their systems is understood and they are aware of the requirements when handling and communicating that data.

Published 25/05/2023
Authoring body: The Police Digital Service (PDS)
Standards
Resource
Third Party Assurance for Policing (TPAP)

This Standard is to ensure that all third party suppliers are examined to fully understand their overall security posture and how that may impact upon Policing, ensure they fully understand the responsibilities they have in looking after policing data, that elements such as the importance of vetting and the cyber security of their systems is understood and they are aware of the requirements when handling and communicating that data.

Published 01/07/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
PIN & Biometric guideline

The Biometric & Pin Guidance provides recommendations and best practices for securely implementing and managing biometric authentication and PIN systems.

 

Published 28/06/2024
Authoring body: Police Digital Service (PDS)
Guidance
Resource
NCSP Police Security Classification Guideline V1.0

This guidance is to assist members of the policing community of trust to correctly classify and protect information assets in line with UK Government Security Classification Policy.
This guidance in conjunction with the National Policing Community Security Policy (NCSP) and associated documents supports the requirements of the NCSP Information Management standard.

Published 01/04/2024
Authoring body: Police Digital Service (PDS)
Guidance
Resource
Information Compliance using Microsoft Purview Cyber Guideline

This guidance describes best practice for monitoring, auditing and assuring  the Office 365 tenancy minimise the risk to policing information within the Microsoft 365 service.

Published 01/03/2024
Authoring body: Police Digital Service (PDS)
Guidance