(ID999) INCIDENT RESPONSE - Tel: UK 0044 1732 897 601

CHECK, GCSx, CoCo & IT Health Checks

What is GCSx?

GCSX stands for Government Connect Secure Extranet. It is a secure, private, Wide Area Network (WAN) which enables secure interactions between connected local authorities and other GSi connected organisations.

GCSX is connected to the Government Secure Intranet (GSi), thus enabling secure interactions between local authorities and central government departments and national bodies. It also provides secure access from connected local authorities to many other secure networks.

What is the Code of Connection / CoCo Compliance?

Government Connect (CoCo) is a pan-government program providing an accredited and secure network between central government and every local authority in England and Wales. The network is known as GCSx (Government Connect Secure Extranet). GCSx is part of the wider Government Secure Intranet (GSi) and provides connectivity to nearly all-central departments.

Secure .gov networks

  • Government Secure Extranet (GSX)
  • Government Secure Intranet (GSI)
  • National Health Service (N3)
  • Criminal Justice Extranet (CJX)
  • Police National Network (PNN)

GCSx IT Health Check

One aspect of the compliance process is to conduct an independent I.T security health check (ITHC) to examine the actual level of security on systems that connect to the GCSx network. BII's CHECK accredited consultants will work with you to define an appropriate scope of I.T Health Check dependent on the size and complexity of your network. Our ITHC assessments include a number of remote and onsite device configuration reviews.  

BII addresses the key requirements

BII addresses the key requirements of the Government Connect Code of Connection which are:

  • IT Health Check Requirement (2.4)
  • Vulnerability Scanning Requirement (2.18)
  • Intrusion Detection Requirement (2.9)

CoCo requirement 2.4

IT Health Check

BII's proactive security team provides IT Health Checks in accordance with GCSx guidelines.  BII provide CESG CHECK accredited consultants for IT Health Checks all of which are fully  qualified experienced within the field.  Tests concentrate on the following network assets:

  • External gateway penetration testing
  • Network Analysis, exploitable switches, gateways
  • Vulnerability analysis, patch levels, poor passwords, services used
  • Exploitation of weak or found vulnerabilities
  • 2 reports (technical and non-technical) with recommendations with an annex of more comprehensive detail

CoCo requirement 2.18

Vulnerability Scanning

As your dedicated CSP, BII provides effortless vulnerability scanning for councils and local authorities looking for an IT Health Check with or without PCI scanning included.

For teams with limited resource, BII provides a practical and cost effective solutions that ensures regular vulnerability assessments are completed on time every time with minimal effort. Our professional services team are at hand to assist you with scoping your test and delivering the correct consultant and service. 

Affordable CoCo IT health checks via BII your (CSP)

Do you require an IT health check for your organisation?

BII Compliance are able to offer you a solution that is affordable and in line with your business requirements. Performed by UK security cleared consultants who are CESG CHECK accredited and trusted by many local authorities to provide penetration testing services annually. 

Joining and maintaining

Defined control requirements to join a GCSx network

  1. Annual Audit of security systems
  2. Gap analysis of security systems against the CoCo
  3. Action plan to comply with the CoCo (sustained compliance)

Reviews & active tests

  • Firewall Security Assessment
  • External Network Penetration Test
  • Onsite Network Penetration Test
  • Operating System Assessment
  • Mobile Device Security Assessment
  • SSL VPN Assessment
  • Wireless Infrastructure Assessment
  • IDS/IDP Assessment
  • Application Security Assessment