The IT Health Check Service or CHECK, was developed and introduced by the National Cyber Security Centre (NCSC) to identify vulnerabilities in IT systems and networks which may compromise the confidentiality, integrity or availability of information held on that IT system for HMG and the wider public sector of systems handling protectively marked information.
The NCSC and CREST work in collaboration to provide a set of examinations that are acceptable to industry and meet the requirements of private and public sectors. The NCSC now requires all existing and future CHECK Team Leaders and Members to have passed an approved professional examination designed to test for a basic grounding in the discipline.
NCSC will accept a pass from one of the following examinations when approving CHECK Team Leader and Team Member status:
It is important to note that obtaining passes in the above examinations do not guarantee CHECK Team status. You will also be required to obtain Security Clearance and to ensure the organisation you work for adheres to the rules set out by the NCSC for CHECK Providers.
CHECK Team Leader and Member certifications are valid for 3-years, after which you will need to re-certify. For more information on this, we recommend checking out the NCSC website.
If you are interested in your organisation becoming an NCSC approved CHECK provider of penetration testing services, The NCSC sets high standards for CHECK Service Providers against which all new applicants are measured.
All CHECK companies must meet the following criteria:
If your company meets this criteria and you wish to apply, please send an email to [email protected] with confirmation of the above; your company will then be provided with an application form.