0121 222 5630

Email Aristi Ltd Follow Aristi Ltd on Facebook Follow Aristi Ltd on Twitter Follow Aristi Ltd on LinkedIn Follow Aristi Ltd on Google Plus


You are here:

National Anti-Fraud Network Accreditation.

"The daunting intorduction to secure networks was soon banished through the experience, knowledge and professionalism provided by Aristi. Their dedication and attention to detail has been invaluable to the development of NAFN" Mark Astley Regional Intelligence Officer

The National Anti-fraud Network provides a shared service to public authorities to help in the fight against fraud & protect the public purse.

The National Anti-Fraud Network (NAFN) was established in September 1995 to support its members in ‘protecting the public purse’ including assisting with intelligence gathering process for Housing Benefits, Student Awards, Trading Standards, assisting in the recovery of debt as well as alerting members to scams including false invoicing and sharp practices. Since its formation, NAFN has helped councils identify numerous frauds which have resulted in considerable savings to the taxpayer.

The challenge

NAFN recently launched a new service for its members that allowed for data requests relating to criminal investigations to be made through a secure website. In order to support these requests, NAFN required a connection to the Secure Communitiess Network (SCN), a service managed by the National Police Improvement Agency (NPIA). NAFN also needed to build an Accredited network capable of handling the protectively marked data that resulted from the data requests.

This was a new area for NAFN and the Regional Intelligence Manager (North) Mark Astley identified a need for specialist consultancy to assist with the requirements and issued an invitation to tender for the work.

The solution

Aristi won the tender and provided an experienced CLAS Consultant through its Trusted Security Advisor service to help NAFN meet its business objectives. The first stage of the project involved guiding NAFN through a business impact assessment of the new data. The data was identified as RESTRICTED.

The Aristi CLAS consultant worked with Mark, his team and the NAFN service providers to design a RESTRICTED network that complied with the Cabinet Office Security Policy Framework (SPF) and the requirements of the SCN Code of Connection The consultant carried out a risk assessment in line with HMG Information Assurance Standard No.1 and developed a Risk Management and Accreditation Document Set (RMADS).

The business owner was briefed on the risks and working with the NAFN and NPIA Accreditors, the consultant secured full accreditation for the network. The project was managed from start to finish by the Aristi CLAS Consultant who guided NAFN through the accreditation process and helped identify the required roles and responsibilities to enable NAFN to support the accreditation. In addition to this, Aristi reviewed options and provided recommendations for connecting the NAFN HQ to their Southern office in order to provide secure cost effective connectivity between the two sites and a more effective service to NAFN’s members.


Please contact Aristi to discuss your requirements. Filling in the form below is the quickest way to get in touch with the relevant person at Aristi.


Keep up-to-date with insights and info on all areas of Information Assurance, Information Security, Penetration Testing & Data Sharing from the award-winning consultants Aristi.

Latest Tweets

If Marriott Hotels couldn’t protect their data when they were subject to data breaches, how can your business?:… https://t.co/2DKYoum6zP
17 sleeps till #Christmas !
Getting into the #Halloween spirit! https://t.co/57jpAuer3m

Subscribe to our Newsletter

Latest Blog Posts

  • 500 million customers can’t sleep easy with Marriott data breach

    The world’s largest hotel chain, Marriott Hotels, announced on Friday (November 30, 2018) that half a billion of its customers’ data had been breached dating as far back as 2014. Marriott owns more than 5,800 properties around the world with 1.1 million rooms spread across more than 110 countries[.  That makes this incident is a […]

    Written on Wednesday, 12 December 2018
  • Virtual Data Protection Officer

    The GDPR introduces a duty for you to appoint a data protection officer (DPO) if you are a public authority, or if you carry out certain types of processing activities. To support your on going GDPR compliance and management requirements, we can provide a Virtual Data Protection Officer (vDPO) service giving you access to independent […]

    Written on Thursday, 10 May 2018
  • Protecting Businesses with Cyber Essentials

    The lack of basic cyber security controls remains a significant factor in the vast majority of cyber attacks in the UK today. Businesses are left worried about hackers, data loss and security, and are not sure where to turn. The scale of the threat is nothing new.  The media now regularly covering stories of data […]

    Written on Monday, 05 March 2018