What is Cyber Essentials?
Cyber Essentials is a Government award for businesses to demonstrate they have protected themselves against common cyber threats. It also shows your customers you take the issue of Cyber Security seriously and will also help prevent the vast majority of cyber-attacks against your business.Here’s 7 things you need to know about Cyber Essentials!
From October 2014, Cyber Essentials is mandatory for all suppliers of central Government contracts which involve handling personal information and providing certain ICT products and services.
Many large firms are now adopting Cyber Essentials and will increasingly expect the businesses in their supply chains to hold Cyber Essentials certification too. We also believe this will become the industry standard that all Companies must achieve.
Cyber Essentials certification is achieved by completing and submitting a self-assessment of the Cyber Essentials controls and procedures that are in place. This in turn is submitted to an independent Certification Body to asses if an appropriate standard has been achieved. If this standard has been met a Cyber Essentials certification can be awarded. This option offers a basic level of assurance and can be achieved at low cost.
Cyber Essentials Plus offers a higher level of assurance through the external testing of the organisation’s cyber security controls and procedures that are in place. Given the more resource intensive nature of this process, Cyber Essentials Plus will cost more than the foundation Cyber Essentials certification.
Cyber Essentials requires your organisation to have five technical controls in place:
- Boundary firewalls [to prevent unauthorised access]
- Secure configuration [setting up systems securely]
- User Access control [restricting access to those who need it]
- Malware protection [i.e. using anti-virus software]
- Patch management [i.e. updating software]
Cyber Essentials Certification also encompasses cloud based services where the business has control of the operating system on the cloud.
Leap IT are currently in the process of becoming an Accredited Cyber Essential governing Body and will be able to offer this certification to all of our clients later this year.How can I register for Cyber Essentials?
You can see how your Company currently measures up to Cyber Essentials by completing the questionnaire below:-https://www.cyberaware.gov.uk/cyberessentials/#questionnaire
Alternatively we would be more than happy to discuss any concerns you have and help you get Cyber Essentials verified, please feel free to get in touch on 0121 296 5545 or email [email protected]