What is Cyber Essentials? A weapon in the war against cyber-attacks.

Cyber Essentials is a UK Government backed scheme managed and maintained by the National Cyber Security Centre (NCSC) in partnership with the Information Assurance for the Small to Medium Enterprise (IASME) Consortium.

The scheme has been developed to promote a standard set of IT Security requirements designed to help minimise the likelihood and impact of commonly known cyber-attacks regardless of the organisation’s size.

It covers devices, applications and services within the scope that hold or process business data.

The requirements are grouped into 5 themes shown below.

• Firewalls
• Secure Configuration
• User Access Control
• Malware Protection
• Security Update Management

The scheme consists of two levels of certification:

Cyber Essentials

This basic level (self-assessment) certification covers the full set of controls required to achieve certification and demonstrate compliance with the foundational level of cyber hygiene as set out within the Cyber Essentials Standard. Applicants complete and submit an online questionnaire which is marked by a certified Cyber Essentials assessor.

Cyber Essentials Plus

This enhanced level of certification covers the same set of controls required by the Cyber Essentials standard, however, this time a certified Cyber Essentials Plus assessor will perform a physical test on the devices, applications, and services within scope. This level of certification affords a higher level of assurance that the correct controls are implemented and working as expected for both companies and clients alike. Applicants must first attain Cyber Essentials certification within 3 months prior to attempting Cyber Essentials Plus.

Which level do I need?

The level required will depend on what your organisation is trying to achieve:

• MOD/UK Government contracts
• organisations looking to win MOD/Government contracts will require certification due to the importance of protecting the personal information of UK citizens and UK government employees.
• Supply Chain
• It is important for companies to demonstrate they comply with data protection laws when handling personal data and sensitive personal data of customers and employees. Complying with Cyber Essentials and Cyber Essentials Plus is a good way to show that your company takes data protection seriously—and is compliant with basic cyber security practices.
• Compliance
• Cyber Essentials and Cyber Essentials Plus is a good way of demonstrating to senior executives or board members that your organisation has the basic protections in place. Cyber Essentials Plus provides an added level of assurance using specialist 3rd party companies.

Sharp-aX Computer Systems is proud to say we are Cyber Essentials certified. Our internal systems are monitored 24/7 to ensure we're set up to fight against malware and cyber attacks - ensuring our systems are well protected.

If you have any concerns about cyber security we highly recommend that you look at this scheme and how to implement at your own premises - and we're more than happy to help you do it.

Contact us today:

01442 505 950

support@sharp-ax.com