Cyber Essentials is a UK Government standard for technical controls to help organisations improve the level of IT infrastructure security
This scheme is designed to prevent highly common internet-based attacks which allows organisations to protect the confidentiality, integrity, and availability of stored data on devices on all internet-facing devices.
Accreditation is recommended for any company that stores both company and client data, is governed by GDPR requirements, or simply has a desire to improve their IT infrastructure security.
As it is a Government-mandated scheme, any organisation looking to tender for work with a public-sector body will be required to have met the Cyber Essentials standard and is an increasingly more common requirement for tender applications in the private sector.
In addition to this, heavily regulated industries like Medical, Legal and Financial, where more sensitive client data is stored, may wish to use the Cyber Essentials framework to help with compliance.
In the legal sector, The Law Society references Cyber Essentials as a “should have” in both their Lexcel and CQS Management Frameworks.
Cyber Essentials requires only basic information security hygiene measures to be in place, which when implemented correctly, will significantly reduce the level of vulnerability to external cyber-attacks.
Applicable to organisations of any shape and size; the scheme has 5 critical controls
Centre for Assessment offers three levels of assessment and certification for the Cyber Essentials scheme. Each assessment type offers different benefits and is applicable to a wide range of companies and industries.
To get started, please download an application form here.
Tips on completion: