We manage your certification from start to finish.
Our role is to provide you with the necessary advice and guidance to ensure that your organisation becomes successfully certified with Cyber Essentials.
Our security consultants assess your readiness to comply with the standard, working with you to bridge any gaps in the governance and technical controls required.
We will register your application (this costs from £300.00 + vat, depending upon the size and turnover of the organisation) with a certifying body. We compile the answers to the security questionnaire and if required can implement the people, process and technical measures needed to meet the requirements for certification.
Finally, we will submit the application and respond with to any feedback until your certification is approved.
Cyber Essentials is a minimum standard of cyber and information security that your organisation should be able to demonstrate to customers and business partners.
The requirement to demonstrate that your organisation is doing what it feasibly can to keep data safe is also a key principle of the UK GDPR (Article 5) and is therefore a legal requirement under data protection legislation.
Certification also comes with commercial benefits, with prospective customers (especially government clients) seeing this certification as a mandatory requirement to engage a new supplier.
The certification requires that a number of security controls are in place within the organisation. These controls are designed to ensure that the organisation has some protection against the ever present risk of a cyber attack.
The Cyber Essentials certification is based upon a ‘self assessment’, one that is designed to assess your implementation of controls relating to cyber and information security management. These controls a focussed on the security of your infrastructure, devices and internal processes.
A good place to start is by assessing your readiness for certification (see link below). Once you have done this then we can work with you to address areas of weakness and bridge the gaps in compliance.
Many organisations who don’t employ full time security professionals are wary of attempting to obtain certifications of this nature. We think this is totally understandable; however our objective is to ensure you can quickly and cost effectively obtain this certification without it becoming a major hinderance to your day to day activities.
We have years of experience in implementing the people, process and technical controls needed to meet the standard. We can quickly bridge the gaps in documentation and technical solutions. For example, we can supply security software such as endpoint protection and firewalls should the need arise.
Please contact us if you would like more information.