The 8 Themes of IASME Cyber Baseline

Mar 18, 2024 | IASME Cyber Baseline

IASME Cyber Baseline – a new certification scheme for global supply chains

What is IASME Cyber Baseline?

IASME Cyber Baseline is a new international cyber hygiene certification scheme available to organisations outside the UK. It tackles the basic, but critical, cyber security protection measures and leads the way to offer global supply chains a standardised and respected certification demonstrating robust cyber hygiene.

IASME Cyber Baseline maps to a number of international cyber hygiene standards and best practices, to which there has formerly been no way of demonstrating compliance because they do not have assessments and certification associated with them.

What are the benefits of cyber security certification?

Many global businesses are increasingly setting minimum security standards for their suppliers and a security review process is not uncommon when bidding for new business. A prospective supplier will be asked if they hold an accreditation through a recognised scheme, or to fill out a security questionnaire so that potential risks can be understood.

Going through a recognised scheme is an easy way to benchmark the security posture of your organisation and reassure other businesses as well as customers. IASME Cyber Baseline gives SMEs a legitimate way to prove their compliance using a detailed and relevant framework when responding to contracts.

The scheme is an important first step for many organisations in proving that they are serious about cyber security. It is a pre-requisite to the next step of certifying to the comprehensive risk based and policy driven standard, IASME Cyber Assurance, now recognised as an accessible alternative to ISO 27001.

The 8 themes of IASME Cyber Baseline

The IASME Cyber Baseline scheme allows every size of organisation in every sector to start their cyber security journey with simple cyber security measures across 8 themes. As organisations increase their maturity, they may choose to continue developing their security posture with further cyber security measures across the 13 themes of IASME Cyber Assurance. Over the next few weeks, we will be posting 8 blogs breaking down the important cyber security principles of each of the Cyber Baseline themes with explainer sections and a list of simple steps.

Organisation
Assets
Secure Architecture
People
Managing Access
Technical Intrusion
Backup and Restore
Resilience: Business Continuity, Incident Management, and Disaster Recovery

Search Blog

Why you need to comply with PSTI

10 Apr 2024

What do we mean by a compromised account and how would you know if this has happened?

10 Apr 2024

The 8 Themes of IASME Cyber Baseline – Organisation

27 Mar 2024

Superpowered by Neurodiversity

20 Mar 2024

The 8 Themes of IASME Cyber Baseline

18 Mar 2024

Why use a Cyber Advisor?

12 Mar 2024

« Older Entries

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.

Necessary

Always Enabled

A list of the cookies that are required to make this site function, are given below:

Cookie	Type	Duration	Description
cookielawinfo-checkbox-analytics		1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-analytics	persistent	1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-necessary		1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary	persistent	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary		1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non-necessary".
cookielawinfo-checkbox-non-necessary	persistent	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non-necessary".
CookieLawInfoConsent		1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
geot_country		1 year 1 month 4 days	Used to define what country is attributed to you to aid showing the correct content.
PHPSESSID		session	This cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to manage user sessions on the website. The cookie is a session cookie and will be deleted when all the browser windows are closed.
viewed_cookie_policy		1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.

Non Necessary

A list of the non-necessary cookies can be seen below:

Cookie	Type	Duration	Description
__cfduid		1 month	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
__cfduid	persistent	1 month	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
_ga		2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga	persistent	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag		1 minute	Used to throttle too many requests from being issued within a short time. This is part of the Google Analytics suite of services.
_gat_gtag	persistent	1 minute	Used to throttle too many requests from being issued within a short time. This is part of the Google Analytics suite of services.
_gid		1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.
_gid	persistent	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.
_hjAbsoluteSessionInProgress	persistent	30 minutes	This cookie is used to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen	Session	1 year	This is set to identify a new user’s first session. It stores a true/false value, indicating whether this was the first time Hotjar saw this user. It is used by Recording filters to identify new user sessions.
_hjid	persistent	365 days	Hotjar cookie that is set when the customer first lands on a page with the Hotjar script. It is used to persist the Hotjar User ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
ajs_anonymous_id	persistent	365 days	This cookie is set by Segment as a randomly generated ID for anonymous users.

analytics

A list of the cookies used for analytics can be seen below:

Cookie	Duration	Description
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_gtag_UA_*	1 minute	Google Analytics sets this cookie to store a unique user ID.
_hjSession_*	30 minutes	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.
_hjSessionUser_*	1 year	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.

The 8 Themes of IASME Cyber Baseline

IASME Cyber Baseline – a new certification scheme for global supply chains

The 8 themes of IASME Cyber Baseline

Search Blog

Recent Posts

Why you need to comply with PSTI

What do we mean by a compromised account and how would you know if this has happened?

The 8 Themes of IASME Cyber Baseline – Organisation

Superpowered by Neurodiversity

The 8 Themes of IASME Cyber Baseline

Why use a Cyber Advisor?

Cyber First

Living Wage

Cyber Scheme

National Cyber Awards 2022

Armed Forces Covenant

BSI