0121 222 5630

Email Aristi Ltd Follow Aristi Ltd on Facebook Follow Aristi Ltd on Twitter Follow Aristi Ltd on LinkedIn Follow Aristi Ltd on Google Plus


You are here:

Bromsgrove District Council GCSX Project.

"We were looking for a company with the right level expertise and experience. Aristi's experts helped us better understand the GCSx CoCo requirements and the recommendations that they have made have helped us achiece real measurable cost savings." Mark Hanwell ICT Transformation Manager

Bromsgrove District Council (BDC) serves 92,000 residents and covers 84 square miles of urban and rural communities, with a third of the population based in Bromsgrove town and other population clusters in Hagley, Rubery and Wythall.

BDC are currently working very closely with Redditch Borough Council (RBC) as they move towards shared services in order to deliver potential savings of £1.2m initially and further annual savings of £500K.

The challenge

BDC needed expert help and advice to manage and support both theirs and RBC’s compliance with the Government Connect Secure Extranet (GCSx) Code of Connection (CoCo). They also wanted to explore the possibility of consolidating both council connections to the GCSx network down to a single connection.

There was also an opportunity to reduce the scope of the services connected to the GCSx network which would greatly simplify it’s management and significantly reduce the cost of maintaining connectivity.

The solution

Aristi were awarded a three year contract to provide CLAS consultancy services to support compliance with the GCSx CoCo.

Previously both councils would have had to submit separate CoCo applications, one for each council, taking an aggregated approach will mean that they will now only have to submit one.

The three year contract will allow BDC to take advantage of expert consultancy to meet the requirements s of an aggregated CoCo, development of information security policies and guidance on the implementation of the required controls. Aristi will work with BDC to help maintain compliance with the CoCo over the period of the contract.

The benefits

Aggregated connection to GCSx means one connection instead of two and at £22,620 per year for both connections, verses an aggregated cost of £16,894, BDC will save £17,178 over 3 years.

Penetration Testing Scope reduced from 140 servers to just 14 reducing the cost from approximately £12K per year to £4K per year saving £24K over 3 years.

The softer benefit is that their corporate network is not restrained by the CoCo standards and they can move ahead with projects without adding the high cost of compliance.


Please contact Aristi to discuss your requirements. Filling in the form below is the quickest way to get in touch with the relevant person at Aristi.


Keep up-to-date with insights and info on all areas of Information Assurance, Information Security, Penetration Testing & Data Sharing from the award-winning consultants Aristi.

Latest Tweets

The problem with the service lifecycle by @sanjaypoyzer https://t.co/nbrB9vXwHK great observation on the digital se… https://t.co/AzttSkOpSe
Where is the world of cybersecurity headed? Here’s our feedback from the frontline and a little insight into naming… https://t.co/dKKwjx8Jxk
Still using Windows 7? https://t.co/TZq4J1xXNl

Subscribe to our Newsletter

Latest Blog Posts

  • 10 years of Aristi by its founder, Harj Singh

    What’s in a name? The word Aristi has three meanings – security, excellence and calm. Find out where we started and where we believe cyber security to be headed.

    Written on Thursday, 24 January 2019
  • 500 million customers can’t sleep easy with Marriott data breach

    The world’s largest hotel chain, Marriott Hotels, announced on Friday (November 30, 2018) that half a billion of its customers’ data had been breached dating as far back as 2014. Marriott owns more than 5,800 properties around the world with 1.1 million rooms spread across more than 110 countries[.  That makes this incident is a […]

    Written on Wednesday, 12 December 2018
  • Virtual Data Protection Officer

    The GDPR introduces a duty for you to appoint a data protection officer (DPO) if you are a public authority, or if you carry out certain types of processing activities. To support your on going GDPR compliance and management requirements, we can provide a Virtual Data Protection Officer (vDPO) service giving you access to independent […]

    Written on Thursday, 10 May 2018