A primary objective of the UK Government’s National Cyber Security Strategy is to make the UK a safer place to conduct business online. To support this objective, the Cyber Essentials scheme has been developed to assist organisations with defending against the most common form of basic cyber attacks originating from the Internet.
As a member of CREST, the approved accreditation body under the Cyber Essentials scheme, Intertek NTA is able to certify organisations against the Cyber Essentials standard.
There are currently two levels of certification that can be applied for:
Requires you to complete a self-assessment questionnaire with responses independently reviewed, and a vulnerability scan of your Internet-facing systems performed by Intertek NTA (or other external certifying body).
As above plus testing of your internal workstations systems carried out by Intertek NTA (or other external certifying body), using a range of approved tools and techniques.
Successfully adopting the Cyber Essentials standard will allow your organisation to advertise the fact that it adheres to a Government endorsed standard, as well as providing existing and potential customers reassurance that the organisation is committed to implementing cyber security controls.
With the Government also keen to work with more SME’s, adopting and demonstrating the Cyber Essentials standard could be a deciding factor for businesses looking to supply products and/or services to the Government.
The Cyber Essentials standard has been designed in consultation with SMEs to be light-touch and achievable at a reasonable cost, with the two options giving organisations a choice of the level of assurance they wish to gain and the cost of doing so.
The standard is not just limited to companies in the private sector, but is also applicable to any organisation that wishes to reassure itself and others of the security controls in place.