The IASME Cyber Essentials accreditation is the UK Governments attempt to make the UK a safer place to do business.
It should be pointed out that the Cyber Essentials scheme is only about securing your business against the most common forms of Cyber Attack, the “low hanging fruit”. It also aims to publicly demonstrate that your organisation has made a proactive commitment to Cyber Security.
The Cyber Essentials accreditation is the basic level offered. A company only needs to complete a questionnaire. OIC Solutions would be pleased to advise and help you with this process. OIC Solutions can also undertake an optional external vulnerability test against your publicly accessible Internet facing IP Addresses. This is aimed at demonstrating independent validation of aspects of the questionnaire.
The Cyber Essentials PLUS is the higher level of accreditation requiring both the questionnaire and testing of your workstation security by an external certifying body. Naturally the PLUS accreditation does provide a greater level of security assurance for your business but comes at a higher financial cost.
OIC Solutions opinion is that unless there is a specific business justification to achieve the Cyber Essentials PLUS accreditation, the basic level, based on the self assessment questionnaire and optional vulnerability testing is sufficient for most organisations.
More specific information about the Cyber Security Essentials Scheme can be found here in our Blog.
A synopsis diagram showing the key components for the UK Cyber Security Essentials Accreditation.