Get in touch: contact@silverthorn.info
Enhancing Your Cyber Resilience Through Expert Services
Silverthorn Associates, led by Mark Brett, delivers comprehensive cyber resilience auditing aligned with the NCSC's Cyber Resilience Audit scheme. As an NCSC Assured Service Provider, we transform cyber audits from compliance exercises into valuable tools for strengthening your organisation's security posture.
About Silverthorn Associates
Expert Leadership
Led by Mark Brett, whose research focuses on principles-led information assurance rather than policy-driven compliance, creating a holistic approach to cyber resilience.
NCSC Assurance
Fully aligned with the NCSC Cyber Resilience Audit scheme, providing consumers with confidence in our independent cyber audit capabilities.
Sector Experience
Extensive experience across public sector organisations including central, devolved and regional government, Local Authorities, Health and Fire & Rescue.
Our Cyber Resilience Audit Approach
Understand Your Environment
We begin by thoroughly assessing your current cyber security landscape, infrastructure, and governance frameworks to establish a clear baseline.
Conduct Comprehensive Audit
Using the Cyber Assessment Framework (CAF) or other applicable standards, we perform rigorous evaluations of your systems, processes, and policies.
Deliver Actionable Insights
Our audit reports provide clear, prioritised recommendations focused on genuine improvement rather than mere compliance checkboxes.
Alignment with NCSC CRA Scheme
Assured Service Provider Status
Silverthorn Associates meets the stringent NCSC standards for delivering independent cyber audits, demonstrating our technical competence and organisational commitment.
Flexible Assessment Framework
While initially based on the Cyber Assessment Framework (CAF), our audits can be adapted to evaluate compliance against any recognised Cyber Security Standard.
Scheme Partner Alignment
We understand the requirements of Cyber Oversight Bodies and ensure all relevant Scheme Partner standards are comprehensively addressed in our audit approach.
Research-Informed Excellence
PhD-Level Expertise
Grounded in Mark Brett's academic research in Cyber Security Policy & Governance
Innovative Frameworks
Developer of the LACES (Local Authority Cyber Eco-System) framework
Community Engagement
Active leadership in Cyber Security Community WARP groups and CTAG
Our approach to cyber resilience auditing is continuously refined through academic research, practical framework development, and active involvement in professional cyber security communities.
Beyond Compliance
Evaluate
Comprehensive assessment against relevant frameworks and standards
Analyse
Deep analysis of vulnerabilities and resilience gaps
Recommend
Prioritised, actionable improvement strategies
Improve
Guidance on implementing continuous security enhancement
Meeting Diverse Sector Needs
Central, Devolved & Regional Government
Tailored audit approaches addressing the unique security considerations of government bodies at all levels, from national departments to regional authorities.
Local Authorities
Specialist expertise in local government cyber challenges, supported by Mark Brett's development of the LACES framework specifically for the local authority context.
Health Services
Comprehensive understanding of the critical security requirements for health sector organisations, including patient data protection and clinical system resilience.
Fire & Rescue
Specialised knowledge of emergency services' cyber requirements, ensuring resilient communications and operational systems during critical incidents.
Partner with Silverthorn Associates
What distinguishes Silverthorn Associates from other cyber audit providers?
As an NCSC Assured Service Provider, we combine official recognition with Mark Brett's extensive experience across public sector organisations. Our approach moves beyond compliance checklists to delivering meaningful security improvements based on research-informed principles.
How do your audits align with NCSC requirements?
Our audit methodology is fully aligned with the NCSC's Cyber Resilience Audit scheme, initially based on the Cyber Assessment Framework (CAF) but adaptable to any recognised Cyber Security Standard. This ensures our clients meet all Scheme Partner requirements.
What outcomes can we expect from a Silverthorn Associates audit?
Beyond compliance certification, you'll receive actionable insights prioritised by impact, a clear roadmap for security improvements, and the confidence that comes from a thorough, principles-led assessment of your cyber resilience posture.