Cyber Essentials

Cyber Essentials is a government backed and industry supported Certification for businesses run by National Cyber Security Centre (NCSC), which is part of Government Communications Head Quarters (GCHQ). Cyber Essentials helps you to guard against the most common cyber threats and demonstrate your organisations commitment to cybersecurity.

More than 80% of the successful cyber attacks could have been prevented with the basic security controls in place. Cyber Essentials will help you identify any potential risks to your business.

What Is Involved In Achieving Cyber Essentials Certification?

There are two types of Certifications. Cyber Essentials and Cyber Essentials Plus. They both start with a self-assessment questionnaire. The Certification requirements are listed below:

• Firewalls
• Secure Configuration
• User Access Controls
• Malware Protection
• Patch Management

Cyber Essentials Certification

The Cyber Essentials Basic is a self-assessment certification. The client's organisation will be provided with a questionnaire which you will fill in your businesses security controls and you will need to submit the answers as per your infrastructure setup. There is no onsite assessment for this stage.

Cyber Essentials Plus Certification

Cyber Essentials Plus starts with a self-assessment questionnaire, an external vulnerability scan of internet facing systems as well as an internal vulnerability assessment of your internal workstations and mobile devices. We will review the self-assessment questionnaire and arrange an onsite or remote visit (COVID-19 restrictions prevailing) to test your internal workstations and mobile devices. If all elements of testing pass, you will be issued a Cyber Essentials Plus Certification and can use the certified badge. This will demonstrate your Cyber Essentials commitment.