What is "Cyber Essentials"?
Cyber Essentials is a scheme backed by the UK government and supported by the IT industry. It has been designed to help companies of all sizes protect themselves against the the most common forms of cyber attack.
It covers five key security issues:
- secure network and hardware configuration
- access controls
- patch management
- anti-malware protection
Additionally, there are two levels:
- Cyber Essentials
- Cyber Essentials Plus
The core certificate includes a self-assesment questionnaire and a vulnerability scan (conducted by an accredited third party organisation) that independently verifies your security status.
Cyber Essentials Plus builds on the basic accredation: it includes an internal security scan and on-site assesment by independent specialists.
Why should our company have a Cyber Essentials certificate?
Cyber Essentials certification demonstrates to customers, suppliers and other stakeholders that the most important cyber security controls have been implemented.
The government suggests that a Cyber Essentials certified organisation will be protected from about 80% of cyber attacks, provided the tasks carried out to gain certification are maintained.
Cyber Essentials is now a mandatory requirement for UK government contracts. Cyber Essentials Plus is mandatory if you want to work with the Ministry of Defence. In any case, both certificates will boost your reputation for quality processes, which may in turn give you a greater chance of winning commercial contracts.
How much work is involved for us?
Both Cyber Essentials qualifications have been designed in consultation with SMEs so as to be both effective and achievable at low cost.
How do we get Cyber Essentials?
It's really quite easy, just get in touch and we'll talk through the requirements, impliment any upgrades and help you through the certification process.