13/06/17

Why Your Business Needs Cyber Essentials

More than 30% of small businesses across the UK were
victims of targeted cyber attacks during the last 12 months.

The problem is increasing, and now businesses of all
sizes need to take action to protect themselves against cyber-crime.  Here at PC Net Solutions we are on a mission to
highlight the problems and dangers, and let people know they can protect
themselves before it happens.  We feel the ransomware attackers have realised that if
they set the ransom low enough then small business owners, who are busy people,
may decide to pay the ransom rather than losing time reporting and fighting the
attack, and possibly losing their reputation.

We hear a lot about attacks on large businesses and
organisations such as the NHS ransomware crisis, but incidences of attacks on
small businesses are increasing.  The Cyber Security Breaches Survey 2017 shows
businesses holding electronic personal data on customers were more likely to
suffer cyber breaches. The most common breaches were via fraudulent emails,
viruses and malware.  Many of these problems could be prevented by using the
new Government-backed Cyber Essentials scheme, which details expert guidance on
how to protect against these threats.

Why get Cyber Essentials?

●      Attacks cost thousands of pounds
worth of costs and disruption to everyday operations.

●      Most cyber attacks are relatively
basic and it’s easy to use Cyber Essentials to get good basic protections in
place to prevent them.

●      Cyber Essentials is designed by
Government to protect your organisation from the most common Internet threats.

What does Cyber
Essentials Require?

Cyber Essentials requires your organisation to have
five technical controls in place

1.     Boundary firewalls [to prevent
unauthorised access]

2.     Secure configuration [setting up
systems securely]

3.     User Access control [restricting
access to those who need it]

4.     Malware protection [i.e. using
anti-virus software]

5.     Patch management [i.e. updating
software]

There is a summary of the scheme here and the five controls are listed in
more detail here.

Each certification body assesses against the same
requirements, but assists companies in their submission by providing prompts,
usually by questionnaires or via online portals.

You can see examples of the type of questions you will
be asked in this quick
self-assessment
questionnaire.

The scheme is suitable for all organisations of all
sizes, in all sectors. This includes charities, voluntary organisations,
schools, colleges, universities, local authorities, police forces and other
public sector bodies.

Where do I begin?

We provide all of these controls as services, and
advise our clients on gaining the Cyber Essentials certificate and you can get
in touch with us on katy@pcnetsolutions.co.uk

You can also contact the certification bodies, the
suppliers you work with to assess whether your organisation complies with Cyber
Essentials, direct. Further details are set out in the Assurance Framework
document here.

How much does it cost?

Prices are set by the market, not by Government, and
will vary from supplier to supplier depending on the level of service and
support offered. The basic cost of a Cyber Essentials certificate for a small
business is typically in the low hundreds of pounds (e.g. around £300 or £400)
though can be higher if you request a higher level of service.

Where can I find more
information about cyber security?

A wide range of free guidance, support and training is
available via Gov.UK
and the National Cyber Security
Centre
.

Alternatively
give us a call on 01743 290588 or 01952684030. We’ll be very happy to chat about cyber
security with you.