In 2014 The UK Government worked with a number of Industry leading bodies to create Cyber Essentials – robust and wide-reaching guidelines that document the controls all organisations should have in place to mitigate IT based cyber-threats.
Since outlining the accreditation as an important piece of the jigsaw when small business bid for Government business, we’ve had a lot of enquiries about exactly what it is and what accreditation entails. With that in mind, we’ve decided to give you a little more information on Cyber Essentials and Cyber Essentials Plus – with a view to helping you decide if either would be beneficial to your business.
Cyber Essentials is a set of system controls – which, when put into place across an organisation’s IT infrastructure and practices offers protection against the most common forms of internet based cyber-attacks.
Rather than focus on the most sophisticated attacks – Cyber Essentials focuses primarily on the types of crime that make up the large percentage of online attacks, a wise move, considering the sheer number of malicious tools available and the ease with which even novice criminals can put those tools into action.
There are defined steps and system considerations that make up the Cyber Essentials requirements – they are:
When these measures have been appropriately assessed a senior member of your staff team confirms that network infrastructure is up to standard. Shortly after, an external and independent verification company will visit and confirm your company’s level of adherence.
While the assessment and necessary criteria are the same for the Cyber Essential’s Plus certification, the process is performed entirely by an external Cyber Essentials Accreditation Body – thus offering a higher level of assurance, given the high level of IT expertise required to fulfil the role.
The cost of the Cyber Essentials Plus assessment and accreditation process is sometimes slightly more than that of the basic level certification – but carries a great deal more weight when approaching Government and businesses who require such accreditation to bring you onboard as a partner or supplier.
The team here are proud to have achieved our status as a Cyber Essentials Certification and Accreditation Body in 2017. Our extensive experience in cyber-security has meant we can support Scottish small and medium sized businesses to achieve this prestigious award.
If you feel like Cyber Essentials would be a benefit to your business, your customers and your future partnerships – call us – we’ll explain the first steps and can support you all the way.
How IT can help you expand your business Research suggests that around 50% of small Scottish businesses ...
Office 365 offers some small business benefits that are hard to ignore. From personalised pricing to a ...
Through this series of articles, we’ve talked about backing up your business data, the things ...