Cirrus MSP can help guide and protect your business with Cyber Essentials.

Cyber Essentials is a Government-backed scheme aimed at helping organisations protect themselves against common Internet-based cyber attacks. Certification to Cyber Essentials a great way to demonstrate your commitment to security, increase trust with customers, and even brings down business insurance premiums. It’s also a requirement for any government contracts, opening up new opportunities as it will help protect against the vast majority of common cyber attacks, and will act as a significant deterrent to cyber criminals.  The scheme was developed by the National Cyber Security Centre (NCSC), a part of GCHQ, and is administered and managed by the IASME Consortium (IASME) on the NCSC’s behalf. 

The Cyber Essentials (CE) scheme was developed as a part of the UK Government’s National Cyber Security Strategy. It aims to protect your organisation against a range of the most common Internet-based cyber-attacks in 5 basic control areas:

  • Firewalls

  • Secure configuration

  • Security update management

  • User access control

  • Malware protection

The Cyber Essentials scheme offers two levels of certification, namely ‘Cyber Essentials’ and ‘Cyber Essentials Plus’. 

Cyber Essentials is the foundation level certification within the Cyber Essentials scheme. The process involved in achieving Cyber Essentials Certification is simple and involves your organisation completing an online self-assessment questionnaire. 

The questionnaire will require you answering a number of questions to assess your organisation against the 5 basic security controls. A qualified assessor will verify the information provided. There are no checks on your IT systems at this level, as such the assessment questionnaire can be accessed and answered quickly and easily.

Cyber Essentials Plus is an addition to Cyber Essentials Verified Self- Assessed. All organisations MUST have Cyber Essentials Verified Self-Assessed certification dated within 3 months prior to applying for Cyber Essentials Plus. Cyber Essentials Plus involves an audit of your system by a highly trained assessor, a comprehensive vulnerability assessment, internal and external penetration testing. The aim of the assessment is to confirm that all of controls that have been declared in Cyber Essentials are implemented on the organisations network. By undertaking and completing Cyber Essentials Plus, you can declare publicly, that your organisation has been proven to meet baseline security standards set out by Cyber Essentials. 

‍Achieve Cyber Essentials and Cyber Essentials Plus certification with help from our team of qualified experts.