Cyber Essentials
Protect your business against cyber attacks with Cyber Essentials certification
Cyber Essentials Explained
There is more to cyber security than simply employing software and hardware to protect against attack. In fact, the majority of data breaches are the result of poor internal processes and can be corrected with a number of common-sense steps.
Cyber Essentials certification
Cyber Essentials is a government-backed initiative that provides businesses across all sectors with a set of technical and practical measures. These checks are designed to ensure that companies are getting the basics right and preventing the simple causes of security breaches.
Cubit works with clients to put in place the necessary measures to achieve Cyber Essentials or Cyber Essentials Plus certification. We often continue working with companies long after that certification has been achieved, to continue to support their security behind the scenes.
Cyber Essentials technical controls
As a first step on the road to Cyber Essentials certification, we can conduct a Cyber Essentials audit to see how your current business processes measure up against the following technical controls:
Use a firewall to secure your internet connection
Protecting your internet connection with a firewall provides you with a basic level of protection. This effectively creates a ‘buffer zone’ between your IT network and external networks.
Choose the most secure settings for your devices and software
When implementing infrastructure of software and devices, you need to ensure systems are configured and security measures are in place.
Control who has access to your data and services
Employees of an organisation are the biggest threat in regards to cyber security. To minimise the potential damage if an account is misused or stolen, ensure employees have access at the appropriate level.
Protect yourself from viruses and other malware
Malware (short for ‘malicious software’) and viruses, are designed to disrupt, damage, or gain unauthorised access to a computer system.
Keep your devices and software up to date (patch management)
It’s important to keep all of the devices, operating systems, installed apps and software on your systems up to date. Manufacturers and developers release regular updates to fix any security vulnerabilities discovered.
Cyber Essentials Plus Checklist
To see how your business measures up, take a look at our Checklist to perform a Cyber Essentials audit.
Are you looking to gain Cyber Essentials certification?
Cyber Essentials Certification
Once an organisation is fully compliant they receive a Cyber Essentials certificate to indicate to customers and stakeholders that they have safety measures in place. There are two levels of certification available:
Cyber Essentials: this option gives you protection against a wide variety of cyber attacks that target enterprise-level and corporate IT systems. It involves a self-assessment questionnaire and an external vulnerability scan. It will show you how to address the basics and prevent the most common attacks.
From £500 approx (+VAT)
- Reassure customers that you are working to secure your IT against cyber attack
- Attract new business with the promise that you have cyber security measures in place
- Gain a clear picture of your organisation’s cyber security level
- Some government contracts require Cyber Essentials certification
Cyber Essentials Plus
Recommended for businesses who wish to demonstrate a higher level of security assurance. This includes all of the Cyber Essentials assessments as well as an additional internal scan and on-site assessment.
£POA
Frequently Asked Questions
What is Cyber Essentials?
Cyber Essentials is a government-backed certification scheme that helps businesses protect themselves against cyber threats. It covers essential security controls like firewalls, secure configurations, access control, malware protection, and patch management.
What’s the difference between Cyber Essentials and Cyber Essentials Plus?
Cyber Essentials is a self-assessment certification, while Cyber Essentials Plus requires an external technical audit of your systems to ensure compliance.
Can I do a Cyber Essentials self-assessment?
Yes, businesses can complete a Cyber Essentials self-assessment to verify that they meet the necessary security standards.
What can I do with a Cyber Essentials certification?
A Cyber Essentials certification demonstrates to clients and partners that your organisation takes cybersecurity seriously and has implemented measures to protect against common threats. Some of our clients have shared its usefulness in acquiring larger clients with greater cybersecurity demands.
Do I need a Cyber Essentials certification?
A Cyber Essentials certification may not be mandatory for all businesses, but it is highly recommended, especially for those working with sensitive data or government contracts. It demonstrates your ability to protect your clients.
Does Cyber Essentials expire?
Yes, Cyber Essentials certifications are valid for one year, after which you will need to re-certify to maintain compliance.
How much does Cyber Essentials cost?
The cost of Cyber Essentials certification depends on the size of your organisation and whether you choose self-assessment or external auditing, starting from around £300.
How long does the certification process for Cyber Essentials take?
The certification process can take between a few days to several weeks, depending on your current security setup and the type of certification you pursue.
Is Cyber Essentials the same as ISO27001?
No, Cyber Essentials focuses on basic cybersecurity measures, whereas ISO27001 is a comprehensive security standard covering information management systems.
Ready to get Cyber Essentials Certified?
No matter which option you choose, Cubit Technology can help guide you on how best to protect your business. We can help you identify vulnerabilities, by assessing how your business currently measures up against the five technical controls. We’ll also help you set up security measures in order for your business to comply with Cyber Essentials certification.
For more information on how Cubit can help your business with Cyber Security and Cyber Essentials certification, contact us on 020 3535 0680 or fill out the form below.