Public Service Network (PSN) Accreditation 

Our client needed a PSN (Public Services Network) accreditation to ensure their organisation meets the necessary standards to connect to the UK's Public Services Network. Achieving PSN accreditation is critical for Clackmannanshire Council so that they can continue to use & connect to the network.

​

This Project comprised:

​

Preparation & Planning

• Understand Requirements: Familiarise ourselves with the PSN Code of Connection (CoCo), which outlines the technical and security standards for connecting to PSN.

• Stakeholder Engagement: Work closely with technical teams, security officers, and governance bodies to ensure alignment on accreditation requirements.

​​

Technical Assessment

• Infrastructure Review: Assessed their network infrastructure for compatibility with PSN standards, ensuring security measures like firewalls, encryption, and secure protocols are in place.

• Gap Analysis: Identify areas of improvement to meet PSN accreditation requirements.

​​

Security and Risk Assessment

• Risk Management: Identify potential risks to the network, such as data security and unauthorized access, and address them with appropriate security measures.

• Security Controls: Implement or upgrade security controls, including intrusion detection systems, vulnerability scanning, and regular compliance checks.

​​

Documentation & Policies

• Prepare Documentation: Create the required documentation to demonstrate compliance with PSN CoCo, including network diagrams, security policies, and risk management plans.

• Review Policies: Ensure all security policies are updated and compliant with PSN requirements.

​​

Testing & Validation

• Penetration Testing: Conduct tests to identify vulnerabilities before submission for accreditation.

• Compliance Testing: Verify that all systems are fully compliant with PSN’s security and technical standards.

​​

Submission for Accreditation

• Submit Documentation: Provide the required documentation and evidence of compliance to the PSN accreditation body, often the Government Digital Service or an equivalent body.

• Review Process: The accrediting body will review your documentation and may conduct a technical audit. Be prepared to provide additional information if necessary.

​​

Ongoing Compliance & Monitoring

• Continuous Monitoring: After achieving accreditation, ensure continuous monitoring and conduct regular security assessments and audits to maintain compliance.

• Renewal: PSN accreditation typically requires periodic renewal, so set up processes to keep the accreditation up to date.

​​

Key Components

• Security & Encryption: Use secure communication methods such as VPNs and encryption for data transmission.

• Access Control: Implement role-based access management and multi-factor authentication to restrict access.

• Incident Response: Create a plan in place for responding to security breaches.

• Audit Trails: Maintain logs of network activity for accountability and troubleshooting.

​​

The success of the PSN accreditation project depended on meticulous planning, adherence to security standards, and thorough documentation. Understanding both the technical and compliance aspects was crucial to enable our client to have a robust, viable roadmap for PSN accreditation.