IASME – here to help

Based in the beautiful Malvern hills, IASME work alongside a network of almost 300  expert organisations across the UK and Crown Dependencies to help advise and certify organisations of all sizes in both cyber security and counter fraud. IASME is committed to helping businesses improve their cyber security, risk management and good governance through an effective and accessible range of certifications.

IASME – here to help

Based in the UK, IASME work alongside a network of expert organisations across the world to help advise and certify organisations of all sizes in both cyber security and counter fraud. IASME is committed to helping businesses improve their cyber security, risk management and good governance through an effective and accessible range of certifications.

our schemes

CYBER ESSENTIALS

Cyber Essentials is an effective UK Government scheme which focuses on the five technical controls designed to guard against the most common internet based cyber security threats. Cyber Essentials is now widely recognised as the minimum baseline  level of cyber security for organisations of all sizes.  

From April 1st 2020, IASME became the National Cyber Security Centre’s sole Cyber Essentials Partner, responsible for the delivery of the scheme.

IASME Cyber Assurance

IASME Cyber Assurance (previously known as IASME Governance) is our own comprehensive, flexible and affordable cyber security standard. Developed over several years during a government funded project, the IASME Cyber Assurance scheme was created to offer SMEs an affordable and achievable alternative to the international standard, ISO 27001.

The certification is available in two levels, Level 1 – verified assessed and Level 2 – audited.

IASME IoT Cyber Scheme

The IASME IoT Cyber scheme certifies internet connected devices against the most important security controls and is available in two levels which can be assessed to different degrees of assurance.  Certification demonstrates commitment to best practice security as set out in ETSI EN 303 645, the leading global technical standard in IoT security.

The IoT Cyber Baseline scheme is aligned with imminent UK legislation and covers the top three requirements of the ETSI EN 303 645 standard. The IoT Cyber Assurance scheme is aligned with all of the provisions in the ETSI EN 303 645 standard.

The scheme is available as Level 1 – verified self-assessment and for greater assurance, as Level 2- audited, providing 3rd party testing and independent certification.

Maritime Cyber Baseline

The Maritime Cyber Baseline scheme is designed to certify the cyber security of all commercial vessels and is accessible to operators and vessels of all sizes from across the world. The scheme will allow the operators and owners of vessels to start their journey towards compliance with the International Maritime Organisation (IMO) Guidelines on Maritime Cyber Risk Management. 

Civil Aviation Authority ASSURE SCHEME

Aviation organisations such as UK airports, air carriers and air navigation service providers in scope of the CAA’s Cyber Security Oversight Process are required to complete an ASSURE Cyber Audit. The ASSURE Scheme provides the aviation industry with a framework to manage their cyber security risks without compromising aviation safety, security or resilience whilst ensuring compliance with applicable regulations.

our schemes

IASME CYBER BASELINE

IASME Cyber Baseline Product Image

IASME Cyber Baseline is an international cyber hygiene certification scheme that tackles the basic, but critical, cyber security protection measures. The scheme is an important first step for many organisations in proving that they are serious about cyber security. It is a pre-requisite to the next step of certifying to the comprehensive risk based and policy driven standard, IASME Cyber Assurance.

IASME Cyber Assurance

IASME Cyber Assurance (previously known as IASME Governance) is our own comprehensive, flexible and affordable cyber security standard. Developed over several years during a government funded project, the IASME Cyber Assurance scheme was created to offer SMEs an affordable and achievable alternative to the international standard, ISO 27001.

The certification is available in two levels, Level 1 – verified assessed and Level 2 – audited.

CYBER ESSENTIALS

Cyber Essentials is an effective UK Government scheme which focuses on the five technical controls designed to guard against the most common internet based cyber security threats. Cyber Essentials is now widely recognised as the minimum baseline  level of cyber security for organisations of all sizes.  

From April 1st 2020, IASME became the National Cyber Security Centre’s sole Cyber Essentials Partner, responsible for the delivery of the scheme.

IASME IoT Cyber Scheme

The IASME IoT Cyber scheme certifies internet connected devices against the most important security controls and is available in two levels which can be assessed to different degrees of assurance.  Certification demonstrates commitment to best practice security as set out in ETSI EN 303 645, the leading global technical standard in IoT security.

The IoT Cyber Baseline scheme is aligned with imminent UK legislation and covers the top three requirements of the ETSI EN 303 645 standard. The IoT Cyber Assurance scheme is aligned with all of the provisions in the ETSI EN 303 645 standard.

The scheme is available as Level 1 – verified self-assessment and for greater assurance, as Level 2- audited, providing 3rd party testing and independent certification.

Maritime Cyber Baseline

The Maritime Cyber Baseline scheme is designed to certify the cyber security of all commercial vessels and is accessible to operators and vessels of all sizes from across the world. The scheme will allow the operators and owners of vessels to start their journey towards compliance with the International Maritime Organisation (IMO) Guidelines on Maritime Cyber Risk Management. 

About IASME

IASME was founded on the principle that basic cyber security is an essential requirement for all organisations and their supply chains. We believe this requirement should not be a barrier to the smallest of organisation and the innovation they bring.

IASME believes in inclusivity and representation across every level of the company. Our diverse work team allows us to innovate and deliver in a comprehensive and relevant way. The company is headed by a female CEO and 50% of the organisation are women, with women represented in every team. Over 20% of IASME employees identify as neurodivergent and more than 35% of the IASME team have a disability.   IASME work closely with the UK Cyber Security Forum to train unemployed neurodivergent adults and support them into work.

 Our history is a story of innovation and rapid growth. It all started with the IASME Governance standard which was motivated by the need for something accessible to help small organisations understand a framework to increase their chance of staying safe online.  The IASME Consortium was created in 2012 to take the results of that project forward.   

Today, IASME offers six different certifications and delivers to organisations of all sizes and in all sectors.

 In October 2021, IASME was acquired by the Phenna Group.  Headquartered in Nottingham, Phenna Group’s aim is to invest and partner with selected niche, independent testing, inspection, certification and compliance (TICC) companies that serve a variety of sectors, ensuring customers’ peace of mind by delivering first class assurance services. This large and dynamic group provides the resilience, support and global outlook for IASME to continue to grow. 

 

 

 

Find Out More

Have a look at our Frequently Asked Questions or the Cyber Essentials Knowledge Hub