An ITHC, or IT Health Check, is an IT security assessment required, as part of an accreditation process, for many government computer systems in the UK.
An ITHC is generally performed by an external service provider, although NCSC personnel may perform ITHCs on especially sensitive systems. It can touch on both applications and infrastructure, and involves an element of penetration testing.
CHECK is a scheme for ITHC providers, run by NCSC.
References
- "CHECK - Fundamental Principles of the CHECK Service". Retrieved 2017-06-02.
- "IT Health Check (ITHC): supporting guidance". Retrieved 2017-06-02.
- "About Tigerscheme". Archived from the original on 2010-08-22. Retrieved 2010-10-13.
- About CREST Penetration Testing Archived 2011-08-02 at the Wayback Machine
External links
- National Cyber Security Centre (NSCS)
- Tigerscheme Archived 2010-08-22 at the Wayback Machine
- CREST (Council of Registered Ethical Security Testers)
- The Cyber Scheme