WHAT IS CYBER ESSENTIALS?
Launched in 2014, Cyber Essentials is a UK Government-backed Cyber-Security accreditation. The scheme was created in response to a growing number of cyber attacks on UK businesses.
It’s designed to help businesses of all sizes to protect themselves against potential cyber-crime, by highlighting and implementing some basic controls. We have partnered with an Informaton Security specialist, who are an approved assessor and certification body for Cyber Essentials, enabling us to help your business adopt and be compliant with Cyber Essentials in a straightforward, efficient, and cost-effective way.
We have two methods to gain compliance:
Self Assessment: Complete the online form which the specialist compliance team will then assess. After resolving any problems, certification will be issued.
Guided Self Assessment: Same as above, except one of the compliance team will visit your premises to guide you through the form and approval process.
CYBER ESSENTIALS PLUS
Following Cyber Essentials accreditation, one of our certified assessors will perform a detailed on-site technical audit. Once the tests are completed and all problems are rectified, our assessor will issue the ‘Plus’ certification.
It is the international standard that describes best practice for an information security management system. An ISO 27001 accredited certification demonstrates that you are following those best practices. One of the ISO team can offer advice and guidance in preparation for this high Information Security standard.
ONGOING COMPLIANCE PROCESS
This is the process to follow to establish and retain certification:
ASSURANCE & COMPLIANCE OPTIONS
We offer a range of consultancy and technical services to help you gain your Cyber-Security certifications.
1. CE SELF ASSESSMENT
If you have a full understanding of your IT infrastructure and are confident you can independently complete the requisite Cyber Essentials questions then you may be suitable for Self Assessment.
2. CE GUIDED SELF ASSESSMENT
If you would like help from our certified and friendly team of Cyber Essential experts when completing the Cyber Essentials questions then this would be the best approach for you.
3. CE+ ON SITE ASSESSMENT
Once fully Cyber Essentials certified you may wish to move forward to the higher level of Cyber Essentials Plus. We would then arrange for one of our expert assessors to visit your organisation to perform various checks and tests which enable you to apply for the Cyber Essentials Plus certification.
4. ISO 27001:2013 ON SITE ASSESSMENT
Any organisation required to demonstrate a high level of applied security in establishing, implementing, and continually improving an Information Security Management System (ISMS) may be obligated to achieve ISO 27001:2013 certification. Adopting this rigorous standard should be a strategic decision.
We would arrange for one of the expert auditors to visit your organisation to perform an in-depth assessment of your processes and procedures. Successful completion will enable you to apply for ISO 27001:2013 accreditation.
WHAT THE INDUSTRY IS SAYING ABOUT CYBER ESSENTIALS:
“The Information Commissioner’s Office supports the Cyber Essentials scheme and encourages businesses to be assessed against it. Protecting personal data depends on good Cyber-Security and the threats and challenges are getting ever more sophisticated. All too often organisations fail at the basics. This scheme focuses on the core set of actions that businesses should be taking to protect themselves, their customers, and their brand. Cyber Essentials enables businesses to demonstrate that they are taking action to control the risks.”
Christopher Graham | Information Commissioner | Information Commissioner’s Office
- Protects your business by preventing up to 80% of cyber threats
- Cyber Essentials has become compulsory in some government contracts
- New business generation
- Cyber Essentials certification could reduce your business insurance premium