What is Cyber Essentials?
Cyber Essentials is a Government backed scheme which will help your organisation protect itself against the most common cyber attacks. It will help you to understand the threats which may affect your business and how to manage and mitigate them. It requires you to implement 5 mandatory controls:
- Secure Configurations
- Firewalls and Internet Gateways
- User Access Controls
- Patch Management
- Malware Protection
You can prepare your business either internally or using a third party and certification is granted following a self assessment questionnaire, independently reviewed by an external certifying body. Certification gives your clients and customers reassurance that you take security seriously and have protection and knowledge in place to deal with a cyber event. Also, the certification enhances an organisation’s reputation such that it can use the promise of proper cyber security measures to attract new businesses. More importantly, companies get to have improved visibility of their cyber security preparedness.
Some Government contacts require Cyber Essentials certification before trading with a business.
You can find out more about Cyber Essentials and becoming certified by visiting the NCSC website here: https://www.ncsc.gov.uk/cyberessentials/overview
Companies seeking to be certified can choose from one of the two certification levels; Cyber Essentials and Cyber Essentials Plus. To find out more about the two levels, refer to: What is the difference between Cyber Essentials and Cyber Essentials PLUS.