Introduction to the CESG Assured Service (Telecoms)
CAS(T) is a certification scheme for telecommunications services.
The scheme supports the pan-government Public Sector Network (PSN) programme, which requires that all telecoms services procured by public sector bodies must be accredited to protect information up to the 2-2-4 level (2 for integrity, 2 for confidentiality and 4 for availability) for business impact. This level of security is sufficient for the transmission of UNCLASSIFIED and PROTECT data. The scheme is also a pre-requisite for the levels of data classified at RESTRICTED and CONFIDENTIAL.
The scheme is based on Information Security Management System (ISMS) certification to ISO 27001 with additional specific guidance as defined and maintained by CESG. This enables more direct working by an increasingly IA-aware industry.
There is a Lead Auditor Conversion Course, which is mandatory for Lead Auditors under the scheme. Other parties may also attend the training course but priority will be given to Lead Auditors.