Is THE Cyber Essentials SCHEME for you?
Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever the size, against a whole range of the most common internet based cyber attacks. Cyber attacks come in many shapes and sizes, but the vast majority are very basic in nature, carried out by relatively unskilled individuals. They’re the digital equivalent of a thief trying your front door to see if it’s unlocked. Our advice is designed to prevent these attacks.
Three levels
of engagement
The scheme recognises that not everyone has a dedicated IT The scheme recognises that not everyone has a dedicated IT department or an in-depth knowledge of cyber security. So, Cyber Essentials has been designed to fit with whatever level of commitment you are able to sustain. There are three levels of engagement:
1. The simplest is to familiarise yourself with cyber security terminology, gaining enough knowledge to begin securing your IT. Free cyber security advice to get you started can be found on the NCSC website.
2. If you need more certainty in your cyber security and you wish to demonstrate to your customers that you take cyber security seriously, you can go for basic, or entry level Cyber Essentials certification
3. For a technical audit of your systems to gain an additional level of reassurance, you can go for Cyber Essentials Plus certification.
The five controls
The five basic controls within Cyber Essentials were chosen because, when properly implemented, they will help to protect against unskilled internet-based attackers using commodity capabilities – which are freely available on the internet.
The five controls are:
Boundary firewalls and internet gateways
Secure configuration
Access control
Malware protection
Patch management
Benefits of the
Cyber Essential scheme
Reduce the impact of such treats as:
phishing attacks
malware
ransomware
password guessing
network attacks
Protect your IT:
helps you to protect the confidentiality, integrity and availability of data stored on devices which connect to the Internet including desktop and laptop PCs, tablets and smartphones and all types of server and networking equipment.
Help to gain and retain business:
increasing numbers of public, private and third sector contracts are mandating or actively encouraging Cyber Essentials from their suppliers.
Be cost effective:
Cyber Essentials certification fee of £300.
Help towards GDPR requirements:
Is recognised by the Information Commissioner’s Office as a scheme that can provide security assurances that help protect personal data.
an independently verified self assessment.
Organisations assess themselves against five basic security controls and a qualified assessor verifies the information provided.
FOR A TECHNICAL AUDIT OF YOUR SYSTEMS.
A qualified assessor examines the same five controls, testing that they work through a technical audit.
CYBER ESSENTIALS WILL cost £320 + vat.
The certification process has been designed to be light-weight and easy to follow.
CYBER ESSENTIALS plus is £POA
Cyber Essentials Plus Certification still has our trademark simplicity of approach. The protections you need to have in place are the same, but this time the verification of your cyber security is carried out via a technical audit.
an independently verified self assessment.
Organisations assess themselves against five basic security controls and a qualified assessor verifies the information provided.
CYBER ESSENTIALS WILL cost £300 + vat.
Our self-assessment option gives you protection against a wide variety of the most common cyber attacks. The certification process has been designed to be light-weight and easy to follow in the three steps shown below.
FOR A TECHNICAL AUDIT OF YOUR SYSTEMS.
A qualified assessor examines the same five controls, testing that they work through a technical audit.
CYBER ESSENTIALS plus is £POA
Cyber Essentials Plus Certification still has our trademark simplicity of approach. The protections you need to have in place are the same, but this time the verification of your cyber security is carried out via a technical audit.
Search for a certified organisation
Search for organisations in your supply chain to see if their systems are certified to Cyber Essentials.