to add a new content
Resource
NCSP Secure By Design

This guideline provides guidance on the principles and application of the System Development Standard (Secure By Design) methodology.

Published 08/02/2024
Authoring body: PDS
Guidance
Resource
Cyber Technical Security Management Standard v1.0

This Standard specifies the minimum requirements regarding technical security management. It describes the requirements to enable members of the community of trust to build and operate an effective technical security infrastructure, applying security architecture principles and integrating technical security solutions, such as malware protection, intrusion detection and cryptography.

Published 01/01/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
NCSP Physical asset Management standard v1.0

The standard aims to ensure that physical assets are acquired securely, configured properly, maintained regularly, and disposed of safely and securely, while ensuring the confidentiality, integrity, and availability of the information they handle. By adopting this standard, organisations can ensure that they are protecting their assets against potential threats, mitigating risks, and complying with regulatory requirements.

Published 01/02/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
NCSP Information Management v1.0

This Standard defines the requirements to implement Information Management as mandated in the National Community Security Policy. It encompasses the management of policing information within the OFFICAL tier of the Government Security Classification model.

Published 01/12/2023
Authoring body: Police Digital Service (PDS)
Standards
Resource
NCSP Cryptography Standard v2.1

This standard sets out the Cryptographic Algorithms to be used within policing. A list of algorithms are provided initially followed by applications and the associated cryptography required for each application. Finally the standard provides some commentary on the emerging cryptography for post quantum computing and lightweight computing.
This standard adheres to the National Policing Community Security Policy Framework and is a suitable reference for community members, notably those who build and implement IT systems on behalf of national policing

Published 01/07/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
NCSP Application Management Standard v1.0

This Standard is intended to guide the reader through the process of securely managing business applications both internally developed and externally sourced, regardless of whether locally installed or cloud based. Centred around stocktaking, documenting and actively managing those applications, this standard should enable the visibility of all business utilised applications, ensuring all are appropriately assessed for risk, appropriately licensed and managed in such a way as to not introduce cyber security risk going forward.

Published 01/11/2023
Authoring body: Police Digital Service (PDS)
Standards
Resource
National Policing Community Security Policy Framework v1.3

This framework provides all National Policing and its partners with a clear guide of how information security policies and standards work in National Policing, the objectives of the framework, whom the framework and its supporting policy and principles apply to, whom has accountability for information security and risk and how policies will be governed.

Published 01/10/2023
Authoring body: Police Digital Service (PDS)
Policy
Resource
NCSP Management of High Risk Applications standard v1.1

This standard outlines the minimum requirements and controls that must be met to ensure the secure management of applications identified as high risk.

Published 01/10/2024
Authoring body: Police Digital Service (PDS)
Standards
Resource
Safe deployment of TikTok

This guidance provides an overview of approaches to deploy TikTok safely

Published 01/06/2023
Authoring body: The Police Digital Service
Guidance
Resource
NCSP Robotic process automation guideline

This guideline describes best practice risk management controls for using Robotic Process Automation (RPA) for the purpose of automating manual administrative overheads for National Policing Forces and applications

Published 01/10/2024
Authoring body: Police Digital Service
Guidance