Cyber Essentials

The benefits of achieving Cyber Essentials certification

Ready to Start?

The Cyber Essentials scheme is a world-leading, cost-effective assurance mechanism for organisations of all sizes to help demonstrate to customers and other stakeholders that the most important basic cyber security controls have been implemented.

Cyber Essentials

Benefits

The benefits of achieving Cyber Essentials certification

According to the UK government, “Around 80% of cyber attacks could be prevented” with just five basic security controls.

Even without achieving certification, the scheme’s controls provide a basic level of protection that can ward off the vast majority of cyber attacks, allowing you to focus on your core business objectives.

 

Cyber Essentials St Albans

Properly implementing the controls has the additional advantage of driving business efficiency throughout the organisation, saving money and improving productivity.

 

Related Services

PROTECT AGAINST AROUND 80% OF CYBER ATTACKS

Implementing the five controls will help you protect your organisation and business.
~

DEMONSTRATE SECURITY AND HELP SECURE THE SUPPLY CHAIN

Achieving Cyber Essentials certification will help you demonstrate your commitment to protecting any data you hold, including that of your customers and suppliers.

POTENTIALLY REDUCE CYBER INSURANCE PREMIUMS

Cyber insurance agencies look more favourably on organisations that have achieved Cyber Essentials certification.

What are the Five areas ?

If a cyber criminal is explicitly targeting your organisation using bespoke tools they have created to gain access, then Cyber Essentials will likely not be adequate to protect your systems.

However, for the more common and freely available hacking tools, it is an excellent starting point.

Click on the frequently asked questions to learn more;

Frequently asked questions

Secure Configuration
Web server and application server configurations play a key role in cyber security. Failure to properly configure your servers can lead to a wide variety of security problems.

Computers and network devices should be configured to minimise the number of inherent vulnerabilities and provide only the services required to fulfil their intended function.

This will help prevent unauthorised actions being carried out and ensure that each device publicly discloses only the minimum information about itself.

A scan can reveal opportunities for exploitation through insecure configuration.

Boundary Firewalls
Firewalls are designed to prevent unauthorised access to or from private networks, but both hardware and software need to be properly set up to be fully effective.

Boundary firewalls and Internet gateways determine who has permission to access your system from the Internet and allow you to control where your users can go.

Antivirus software may help protect the system against unwanted programs, but a firewall helps keep attackers or external threats from getting access to your system in the first place.

To adjust the security provided, much like any other control function, you can make changes to the firewall ‘rules’.

Access Control
Even though it is tempting, for convenience’s sake, to give many users administrator rights, it is important to minimise access to your data and services to reduce the risk of a criminal hacker being presented with open access to your information.

Obtaining administrator rights is a key objective for criminal hackers, as this allows them to gain unauthorised access to applications and other sensitive data.

User accounts, particularly those with special access privileges, should be assigned only to authorised individuals, managed effectively, and provide the minimum level of access to applications, computers and networks.

Patch Management
Any software is prone to technical vulnerabilities and, once discovered and shared publicly, cyber criminals rapidly exploit them if they are not properly patched or updated.

Regularly updating software and operating systems will help fix any known weaknesses. Doing this as quickly as possible is crucial to mitigating the risk of a criminal hacker exploiting it first.

Malware Protection
It is important to protect your organisation from malicious software (or ‘malware’), which will seek to access files on your system.

Can wreak havoc by stealing confidential information, damaging files or, in the case of ‘ransomware’, locking files and preventing access unless you pay a ransom.

Protecting against a broad range of malware (including computer viruses, worms, spyware, botnet software and ransomware) and including options for virus removal will protect your computers, your important documents and your privacy.

The Certification Process Explained

Cyber Essentials

A self-assessment option that demonstrates you have key controls in place to help protect against a wide variety of common cyber attacks. It includes a self-assessment questionnaire (SAQ) and an external vulnerability scan. The certification process has been designed to be lightweight and easy to follow.

Cyber Essentials

Cyber Essentials Plus

A more advanced level of the scheme that includes all steps of a Cyber Essentials application, as well as an internal assessment of the five security controls and an internal vulnerability scan on a sample of workstations and mobile devices. Cyber Essentials Plus is a requirement for organisations looking to work with the MOD.

Cyber Essentials Plus

What does it cost ?

Pricing starts from just £295 ex VAT

Cyber Essentials

Starts from

£295.00

Do it yourself
Get A Little Help + £355.00
Get a Lot of Help + £1155.00

Cyber Essentials Plus

Starts from

£1495.00

Do it yourself
Get A Little Help + £355.00
Get a Lot of Help + £1155.00

GET A LITTLE HELP

This service is a bolt on to the Cyber Essentials service, provided by our expert consultants, which is up to 2 hours online consultancy to answer any questions.

GET A LOT OF HELP

This service is a bolt on to the Cyber Essentials service, provided by our expert consultants, which is a full days onsite consultancy to assist and advise on the application.

u

WHAT HAPPENS?

Our aim with this service is to get you passed, first time. If there is a failure, we can advise and help with the remedy and then arrange a re-scan at an additional consultancy cost.

Contact Us

Office

54-56 Victoria Street,
St Albans,
AL1 3HZ

Call Us

Pin It on Pinterest

Shares
Share This