A Government-backed scheme, Cyber Essentials helps small to medium sized organisations protect themselves against common online threats.
It was developed in conjunction with the Information Assurance for Small and Medium Enterprises (IASME) and the Information Security Forum (ISF), to help SMEs implement basic cybersecurity controls to guard against the most common threats at a lower cost.
Benefits of Cyber Essentials Certification
Protect from cyberattacks
The UK government has stipulated that if you implement all five controls correctly it will help you to mitigate the risk of a cybersecurity data breach.
Demonstrate cybersecurity commitment
Secure your supply chain by demonstrating commitment to your clients and other stakeholders that you take the responsibility of protecting their data seriously.
Secure new business
Some government contracts require cyber essentials as a prerequisite of doing business. Not only will Cyber Essentials improve your brand reputation, it can help you to win new contracts.
Gaining Cyber Essentials can reduce insurance premiums and provide you with peace of mind to help focus on your core business, improving efficiencies, cutting costs and driving the overall performance of your business.
Who can help with Cyber Essentials?
Cyber Essentials certification and assessment can be undertaken by cybersecurity experts Nettitude, a member of the Lloyd’s Register group.
As a CREST affiliated company, Nettitude has been delivering security architecture consulting, vulnerability analysis, penetration testing, risk management and technical security auditing for more than a decade.
Its highly experienced consultants can assist you in defining the scope for Cyber Essentials and provide you with a roadmap for achieving the overall certification.
The two levels of Cyber Essentials certification
If your organisation is looking at gaining certification to Cyber Essentials, there are two levels of certification available: Cyber Essentials and Cyber Essentials Plus.
This is the foundation level certificate that conducts technical risk assessments including a self-assessment questionnaire and an external vulnerability assessment. It ensures all five requirements of Cyber Essentials are addressed to help protect your organisation against 80% of cyber-attacks.
Cyber Essentials Plus
For organisations looking for a higher-level of assurance, Cyber Essentials Plus certification provides all the benefits of Cyber Essentials, plus your cyber security is verified by independent experts.
The five controls of Cyber Essentials
According to the UK government, the five requirements in Cyber Essentials can help protect organisations from around 80% of cyber-attacks. Whether your organisation decides to achieve certification to the scheme, these five controls will help your organisation to:
- Secure your internet connection
- Secure your software and devices
- Control access to your data and services
- Protect from viruses and other malware
- Keep your devices and software up to date*