The Cyber Essentials scheme was set up by the UK Government with the purpose of helping you “guard against the most common cyber threats and demonstrate your commitment to cyber security,” in the words of the National Cyber Security Centre (NCSC).
Implementing the fundamental controls required to gain Cyber Essentials certification will indeed make a significant contribution to safeguarding the confidentiality, integrity and availability of the data that you store on internet-connected devices. It will also improve your standing in the eyes of customers and prospects.
What we do
There are two Cyber Essentials certification options:
Cyber Essentials: includes a verified online self-assessment questionnaire.
Cyber Essentials Plus: initial Cyber Essentials assessment, then an external vulnerability scan and an assessment of sample endpoints.
Dionach is an accredited Cyber Essentials Certification Body, enabling us to support you through either route to certification.
Jointly developed by the UK government and cybersecurity industry, the Cyber Essentials scheme defines a baseline standard of security for businesses in the UK. It outlines the controls that all organisations should implement to help mitigate risks from common internet-based threats.
CYBER ESSENTIALS PROCESS
You complete the Cyber Essentials questionnaire online, which is then assessed by Dionach to determine if the answers meet the required pass mark. The questionnaire covers these five areas:
Secure configuration
Boundary firewalls and Internet gateways
Access control
Patch management
Malware protection
Need guidance on which route to choose? Cyber Essentials Readiness Review
If you require support to prepare for the assessment, or guidance to decide which certification route is right for you, Dionach offers a Cyber Essentials Readiness Review. Our consultants will undertake a gap audit that identifies your current position and clearly shows what is needed to achieve compliance.
We deliver the whole spectrum of cyber security services, from long-term, enterprise wide strategy and implementation projects to single penetration tests.
Our team works with you to identify and assess your organisation’s vulnerabilities, define enterprise-wide goals, and advise how best to achieve them.
Our recommendations are clear, concise, pragmatic and tailored to your organisation.
Independent, unbiased, personalised – this is how we define our services. We guide you to spend wisely and invest in change efficiently.
Find out how we can help with your cyber challenge
In an era where data breaches and cyber threats are increasingly prevalent, maintaining robust information security has never been more critical. For NHS Trusts, the
ISO 27001 is an internationally recognised standard for information security management, offering a comprehensive framework to help organisations manage and protect their sensitive information. As
The Payment Card Industry Data Security Standard (PCI DSS) has long been the benchmark for organisations that handle cardholder data, providing a framework for securing