Cyber Essentials helps you to guard against the most common cyber threats and demonstrate your organisation’s commitment to cyber security.
What is Cyber Essentials?
Cyber Essentials is an effective, Government scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks. It is specific in terms of what it concerns and is a great supplement for ISO27001, the International Standard for Information Security Management Systems, and provides independent verification of security controls. To learn more about ISO27001, please read our guide https://quadraconsulting.com/quadra-business-services/cyber-security/iso-27001-information-security-management-system/
Cyber attacks come in many shapes and sizes, but the vast majority are very basic in nature, carried out by relatively unskilled individuals.
There are two levels of certification available:
Cyber Essentials shows you how to address those basics and prevent the most common attacks.
The self-assessment option gives you protection against a wide variety of the most common cyber attacks. This is important because vulnerability to simple attacks can mark you out as target for more in-depth unwanted attention from cyber criminals and others.
Certification gives you peace of mind that your defences will protect against the vast majority of common cyber-attacks simply because these attacks are looking for targets which do not have the Cyber Essentials technical controls in place.
Cyber Essentials Plus
Cyber Essentials Plus has the same Cyber Essentials protections you need to put in place, but for Cyber Essentials Plus a hands-on technical verification is carried out and is a requisite for some Government contracts.
Cyber Essentials Plus certification does include some technical tests, which also need to be undertaken and Quadra can assist you with this. Why do organisations consider Cyber Essentials in the first place?
Why should you get Cyber Essentials?
Certified cyber security
- Reassure customers that you are working to secure your IT against cyber attack
- Attract new business with the promise you have cyber security measures in place
- You have a clear picture of your organisation’s cyber security level
- Some Government contracts require Cyber Essentials certification
Is there assistance available to help our organisation implement Cyber Essentials?
How Quadra can assist you
Quadra will engage with you and carry out an analysis to determine if Cyber Essentials or Cyber Essentials Plus is suitable for your organisation. Once this is determined, with your assistance we carry out an analysis of your current IT infrastructure and protections in place.
We will carry out an analysis of the current IT security state and review with your IT Department or IT support provider and provide an overview of your IT current state vs the requirements of Cyber Essentials OR Cyber Essentials Plus, if applicable.
Based on our analysis, we will produce a Gap Analysis Report and Actions – This is based on a review of a list of gaps with Cyber Essentials/Cyber Essentials Plus and we will agree a list of actions with you.
Quadra will also assist you with completing the Self-Assessment form.
Cyber Essentials Plus and Vulnerability Scan
With Cyber Essentials Plus there is a requirement for a vulnerability scan as part of certification. As part of our service, Quadra will perform an internal vulnerability scan of chosen end points from Quadra’s chosen scanning software to identify and fix any issues prior to the certification body running their scan as part of the assessment. We will also ensure that your firewalls are secure.
We will work with you to review the outputs from the scan and create a corrective action plan, if required and support you through the application process to ensure everything runs smoothly for your organisation.
If you would like to know more about our Cyber Essentials consultancy services, please speak to your Quadra representative or visit https://quadraconsulting.com/top-6-cyber-tips/ for further information.