Is your company up to the cyber security challenge?

We have posted a lot about cyber security threats and the need for businesses to obtain Cyber Essentials certification – a measure of just how important we believe this safeguard to be. So you may be surprised to learn that only around 20% of businesses currently have some form of cyber certification in place!

It’s an astounding figure when you think about the increased dangers now that more people are working from home or hybrid and that 40% of businesses reported being the victim of cyber attacks over the last year.

Dealing with the threat

Cyber attacks ARE a major threat, they are happening on a daily basis, so doesn’t it make sense to have safeguards in place to protect your company’s critical data and systems from being compromised?

The fact is, you can do it simply and effectively by becoming Cyber Essentials certified.

Cyber Essentials is a Government-backed programme created eight years ago to actively help businesses and other organisations prevent cyber attacks.

It provides a positive indicator of an organisation’s commitment to cyber security and certification makes it more likely others will have the confidence to trade or work with your organisation.

Levels of certification:

Cyber Essentials is an independently verified self-assessment. Businesses assess themselves against five basic security controls, a process which is then verified by a qualified assessor.

Cyber Essential Plus is a higher level of protection. A fully qualified and independent assessor examines those same five controls, checking their integrity through simulated basic hacking and phishing attacks.

What are the five security controls?

The five controls centre on the areas where you are at most risk from cyber attacks. They are:

Firewall security – usually the first point of contact for a hacker, making it essential that your firewall and router, part of that all-important first line of defence, are set up correctly to be as robustly secure as possible.

Secure systems configuration – the process which will allow you to safely manage your internet-facing operations, helping to ward off any unauthorised activity and to keep your sensitive information secure.

User access control – ensuring people and devices within your organisation can only access the information necessary to fulfil their role.

Malware protection – safeguarding the devices you and your staff use regularly from the dangers which lurk online, scanning each device to ensure it has not been compromised while blocking potentially harmful activity.

Patch management – software which has become outdated can be more vulnerable and susceptible to attack. This particular aspect of Cyber Essentials looks at having the correct procedures in place to cover, or patch, these deficiencies.

Cyber Essentials certification is one of the fundamental ways to ensure your operating systems remain safe from attack. We continue to work hard with clients to help them achieve this accreditation while raising awareness of the importance of the scheme to the wider community.

We believe Cyber Essentials is a vital tool in combating the threat of cyber-attacks while encouraging businesses to re-evaluate and update their operating procedures.

To find out more about how we can help you obtain Cyber Essentials certification, contact us on 01743 290588.