From 2020 BT will reduce ISDN & PSTN Services, ending them completely by 2025. Businesses need to take action to u… https://t.co/7vfvD2mgZH
Does your company need a Cyber Essentials Certificate?
Complacency over cyber security is not an option in today's business world.
The government recently announced a £1.9 billion National Cyber Security Strategy which aims to make the UK the safest place to live and work online. Although the Cyber Essentials scheme has been around for a while, it’s a pillar stone of this new strategy and is being strongly pushed by the government which aims for all UK businesses to hold this certificate. Businesses of all sizes need to pay attention as the government now require all of their suppliers, who handle sensitive data, to have a Cyber Essentials certificate. They are encouraging big companies to follow suit and make this a requirement for their suppliers– BT, Astra Zeneca, Barclays and Vodafone are already on board!
Cyber Essentials aims to address the most common vulnerabilities exploited in cyber-attacks (such as passwords and admin access policies) and if properly implemented should prevent 80% of attacks. Certification is also a good first step towards the requirements of the EU General Data Protection Regulation (GDPR) which will come into force during May 2018.
What does Cyber Essentials cover?
Cyber Essentials provides a clear outline of the most basic controls all organisations should use to improve their cybersecurity and reduce the risk of attack.
The scheme focuses on five key controls :
- Boundary firewalls and internet gateways
- Secure configuration
- Access control
- Malware protection
- Patch management
Cyber Essentials has two levels of certification: The certification process includes a self-assessment questionnaire (SAQ) and an external vulnerability scan. Cyber Essentials Plus certification includes all of the above plus an on-site audit.
How can we help?
Red Mosquito is well placed to help you through the Cyber Essentials process by:
- Completing a thorough review of your current business network and perimeter security. We will ensure you have the correct cyber security controls in place and that you are implementing and maintaining them effectively.
- We will identify any changes required for your organisation to be compliant with the standard and work with you to make any necessary adaptations.
- We will help you define the scope of your certification and use our technical expertise to complete your customised self-assessment documentation.
Contact us today for a free and no obligation quotation.
Of course our managed IT services customers can rest assured that all controls are being effectively managed! Please get in touch with your account manager on 0141 348 7950 for advice on progressing to certification.