Expleo is working with a major UK aerospace communications provider to develop cyber-secure systems that meet all relevant national security directives and international standards.
The Challenge
Cybersecurity regulations are evolving rapidly as innovative technologies and new threats emerge. Staying up to date with these complex and changing standards throughout the lifecycle of a defence project is critical to ensuring full accreditation on completion.
Expleo’s team of security cleared cybersecurity experts is working with a major UK aerospace communications provider to develop a number of cutting-edge systems that will enter service in the next few years. Embedding cybersecurity at the outset of this project is key to building a resilient system that has the flexibility to adapt to new regulatory requirements cost-effectively.
Expleo’s experts are involved at the design stage to ensure the architectural design of the communications systems provides adequate segregation of RED and BLACK data, and that classified information is protected in accordance with NATO Directive 70-1.
In addition to providing infrastructure, software and training services, Expleo’s security cleared experts are representing the project at relevant UK MOD and NATO security working groups to ensure each stage is fully compliant with the latest security standards.
Solutions
Expleo is providing a range of application security consultancy services to support the successful delivery of state-of-the-art aerospace communications systems to the UK defence sector. Its dedicated team of cybersecurity experts combine valuable knowledge on critical infrastructure, security systems and compliance standards with extensive defence experience and engineering know-how to optimise system protection.
Security Requirement Engineering capability provides expertise in how to meet accreditation requirements. This is a vital first step. By understanding the process and embedding cybersecurity early on, a clear roadmap is developed for each stage which also supports timely identification of issues and rapid problem-solving. This secure by design approach from Expleo is a best practice methodology that ensures all engineers fully understand the security requirements at the outset of the project.
Expleo’s Accreditation Case service is being deployed to ensure proper processes to accurately capture and fully document the security evidence based on accreditor requirements are set up. Attendance of NATO and MOD working groups by Expleo on behalf of its customer allows frequent regulatory updates to be planned for and the project scope adjusted accordingly to remain compliant.
Outcome
Expleo’s engineers bring valuable cybersecurity defence knowledge to meet NATO and ISO compliance requirements. Increased awareness of security within the project engineering team embeds cybersecurity at the outset – not as an add-on – to streamline progress and mitigate risk.
Expleo’s understanding of MOD internal procedures, policies, processes and organisational structure supports the timely delivery of project outcomes in a secure, efficient and cost-effective manner. This UK aerospace communications provider also benefits from our experience in defence electrical architectures, critical infrastructures, supply chains and security systems to confidently gain system assurance.
Expleo’s cybersecurity experts ensure RED and BLACK data are appropriately segregated and classified information is protected in accordance with relevant NATO directives.
