Slider Title

Amwell specialises in Cyber Security and Information Assurance for small to medium sizes enterprises (SMEs). As an SME, you understand that security is vital to the health, and even survival, of your business. However, information security is not your core business so you may not have the capabilities in-house to handle the various aspects.At Amwell, we aim to partner with you to guide you through the complex landscape of risk assessment, threat identification, mitigation, and incident response. We can work with you to over time to turn security from a concern into a selling point for your business.

Learn More

Cyber Security

Almost all small businesses now make use of the internet in their day-to-day work (eg online banking, outsourced payroll, even just email to communicate with suppliers and customers). Some SMEs take this further and use the internet as a critical component of their service or the delivery of their service (eg businesses which take orders from their website).This use of the internet is beneficial in many ways but carries with it the risk of an internet-borne attack. For many businesses, a focus on internet-borne attacks provides an excellent first step to improved security. The UK government has created the Cyber Essentials scheme as an entry-level standard against which companies can be measured, and if compliant, certified. This certification proves to your customers that you take security seriously and that your business meets the requirements laid down by the UK government. Cyber Essentials certification is also mandatory for many contracts with government departments.Amwell can guide you through the process to become compliant with Cyber Essentials and gain certification.

Learn More

Information Assurance

Information assurance goes beyond Cyber Security and looks at information as a critical asset of your business which needs to be protected against threats to its confidentiality, integrity and availability. As well as the technical threats addressed by cyber security, information assurance looks at how to identify your information assets, protect them appropriately, detect any attacks/leaks and respond to them efficiently.

The most prominent and internationally recognised standard for information assurance is ISO 27001, which is used by many large organisations around the world. However, research has shown that smaller companies perceive the time and effort to achieve and maintain ISO 27001 certification to be too onerous.

IASME (Information Assurance for Small to Medium-sized Enterprises) is an information assurance framework which provides smaller companies an option which is more appropriate to their size and complexity. IASME is based on international standards and EU guidance and is simple, quick and cost-effective to implement. Certified IASME compliance can be used to demonstrate to your customers that you have taken the next step in assuring your business and its information assets.

Amwell can guide you through the process to become compliant with IASME and gain certification.

Learn More

About Us

We specialise in helping smaller companies deal with the growing demands of cyber security and data protection. Working together, we can transform these demands into opportunities to improve your business processes, protect your company from attack, and demonstrate your trustworthiness to your customers and partners.

We work with our customers to prioritise the improvements which are either mandatory or provide the best return on investment, then implement change incrementally to ensure that new processes are fully bedded in.

We have over 30 years experience in security-conscious industries like defence, banking, investment banking and alternative investment management. This real-world experience is invaluable when assessing your business and recommending appropriate process improvements.

Our Consultants

Our consultants hold personal certifications including (ISC)2’s flagship qualification, Certified Information Systems Security Professional (CISSP). This demonstrates our breadth of knowledge across all 8 domains of the CISSP Common Body of Knowledge:

  • Security and Risk Management

  • Asset Security

  • Security Engineering

  • Communications and Network Security

  • Identity and Access Management

  • Security Assessment and Testing

  • Security Operations

  • Software Development Security.

Security Certifications

We are a Certifying Body for two popular security standards to demonstrate your security credentials:

  • Cyber Essentials is a UK government-backed, industry supported scheme to help organisations protect themselves against common cyber attacks.
  • IASME Governance is an information assurance framework designed specifically for smaller companies. It is based on international standards and EU guidance and is simple, quick and cost-effective to implement.

Our deep knowledge of these schemes means we can help you prepare and also handle the certification process.

“We believe that achieving recognised certifications is an excellent way to ensure our customers are maximising their return on investment.” – Graham Horne, MD.