An ITHC, or IT Health Check, is an IT security assessment required, as part of an accreditation process, for many
government
A government is the system or group of people governing an organized community, generally a state.
In the case of its broad associative definition, government normally consists of legislature, executive, and judiciary. Government is a ...
computer systems in the
UK.
An ITHC is generally performed by an external service provider, although
NCSC personnel may perform ITHCs on especially sensitive systems. It can touch on both applications and
infrastructure
Infrastructure is the set of facilities and systems that serve a country, city, or other area, and encompasses the services and facilities necessary for its economy, households and firms to function. Infrastructure is composed of public and priv ...
, and involves an element of
penetration test
A penetration test, colloquially known as a pen test or ethical hacking, is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system; this is not to be confused with a vulnerability assessment. T ...
ing.
About CREST Penetration Testing
CHECK is a scheme for ITHC providers, run by NCSC.
References
External links
National Cyber Security Centre (NSCS)
Tigerscheme
The Cyber Scheme
{{DEFAULTSORT:Ithc
Computer security accreditations