IASME Cyber Assurance & Cyber Essentials - Done for you
In our opinion, IASME Cyber Assurance (CA) (or for larger companies ISO27001) is the thing that drives value for a company. Cyber Essentials (CE) is a compulsory part of this standard, however Cyber Essentials is a small part of the solution. When we’re looking at data loss events they are roughly:
70% caused by what we call insider threat, but includes accidents, deliberate attacks and coerced behaviours. People clicking a silly link or paying a fake invoice are here.
15% Supply chain attacks, think how HAMAS had their pagers intercepted, every supply you buy, every supplier you use is a potential attack vector.
14% Technical intrusion into your systems (Cyber Essentials does this bit).
This standard creates an Information Security Management System, helping your security to meet your business goals in the least intrusive and most business friendly way. As such this is a mini ISO27001, a solid grounding to help your team protect your company.
As with Cyber Essentials stand alone, this is a standard that requires filling in a questionnaire, so this requires both the CE questionnaire and the CA questionnaire, leading to the award of both certificates.
Done for you
Our done for you service includes a gap assessment to look at the CA policies and CE hardening you currently have in place, and what needs to be added. We will work with you to provide the policies you need, as well as instruct you on the hardening you need to add to your infrastructure. We will then complete the forms for you to approve and submit them.
Please note, VAT will be applied at the checkout.
In our opinion, IASME Cyber Assurance (CA) (or for larger companies ISO27001) is the thing that drives value for a company. Cyber Essentials (CE) is a compulsory part of this standard, however Cyber Essentials is a small part of the solution. When we’re looking at data loss events they are roughly:
70% caused by what we call insider threat, but includes accidents, deliberate attacks and coerced behaviours. People clicking a silly link or paying a fake invoice are here.
15% Supply chain attacks, think how HAMAS had their pagers intercepted, every supply you buy, every supplier you use is a potential attack vector.
14% Technical intrusion into your systems (Cyber Essentials does this bit).
This standard creates an Information Security Management System, helping your security to meet your business goals in the least intrusive and most business friendly way. As such this is a mini ISO27001, a solid grounding to help your team protect your company.
As with Cyber Essentials stand alone, this is a standard that requires filling in a questionnaire, so this requires both the CE questionnaire and the CA questionnaire, leading to the award of both certificates.
Done for you
Our done for you service includes a gap assessment to look at the CA policies and CE hardening you currently have in place, and what needs to be added. We will work with you to provide the policies you need, as well as instruct you on the hardening you need to add to your infrastructure. We will then complete the forms for you to approve and submit them.
Please note, VAT will be applied at the checkout.