Cyber Essentials…

The first steps towards GDPR compliance
and protection against cyber threats.

 

Datto global iso Dell mimecast partner mircosoft ISO

Cyber Essentials

Your business is at risk from cyber criminals. They are after your data, confidential information and your money! But help is at hand … in the form of Cyber Essentials, a scheme designed by the Government to make it easier for you to be protected.

Cyber Essentials requires your organisation to have five technical controls in place:

  1. Boundary firewalls
  2. Secure configuration
  3. User Access control
  4. Malware protection
  5. Patch management

And it offers a certification process so you can demonstrate that you have taken the essential precautions. 

 

 

Why Get Certified

Cyber Essentials offers a sound foundation of basic hygiene measures that all types of organisations can implement and potentially build upon. Implementing these measures can significantly reduce your vulnerability.

It does not offer a silver bullet to remove all cyber security risk. But it does define a focused set of controls that will provide cost-effective, basic cyber security for organisations of all sizes.

Recently, the WannaCry ransomware cyberattack crippled the NHS and infected computers in 150 countries - it’s organisations of all sizes that are at risk.

Failing to protect your business can be costly in other ways, too. One company that suffered a cyber attack was fined £60,000 by the Information Commissioner’s Office (ICO). An investigation by the ICO found Berkshire-based Boomerang Video Ltd failed to take basic steps to stop its website being attacked.

Cyber Essentials certification will help you to avoid suffering an attack or being penalised for a lack of action. It is also worth noting that fines are likely to be much higher when the new General Data Protection Regulation (GDPR) comes into force next year.

We can help you along the path towards having the technical controls in place and gaining certification.

Cyber Essentials and GDPR

GDPR is intended to strengthen and unify data protection for all individuals within the European Union. Coming into effect on May 25, 2018, it is the most important change in data privacy and security regulation in 20 years.

Some of its key points are:

  • Increased fines.
    Fines can be up to 4% of global turnover or €20M, whichever is higher.
  • Opt-in consent. 
    Users must give clear unambiguous consent for their data to be collected and processed. And you must have proof of how, why and when the consent was given.
  • Breach notification. 
    The ICO must be informed within 72 hours of any data loss and users informed “as soon as possible”.

The Cyber Essentials scheme offers a big step towards being compliant with GDPR and most likely will put you ahead of competitors, many of whom will be dragging their heels.

The Process to Cyber Essentials Certification

We will work with you to ensure the correct processes are in place for each of the five technical controls to help you to gain Cyber Essentials Certification. This will include:

  1. Preventing unauthorised access with boundary firewalls.
  2. Setting up systems securely using secure configurations.
  3. Restricting access to those who need it with user access control.
  4. Using anti-virus software as malware protection.
  5. Updating software for patch management.

This will be partially achieved through a pre-questionnaire as well as gap analysis. We will then be able to score your current state and propose a plan to rectify any issues, with work being conducted by your own team or by one of the experts here at Mirus.

The material on this page contains public sector information licensed under the Open Government Licence v3.0.

Cyber Essentials Services

In order to assist you in the goal of achieving Cyber Essentials certification we have created three package options, depending on whether you need remote assistance on the process through to a full Managed Security offering.

Self-Assessment with Remote Support 

Self-Assessment with Onsite Support

Managed Security Service 

Cyber Essentials Self Assessment Fee

Cyber Essentials Self Assessment Fee

Cyber Essentials Self Assessment Fee Per Year

3 hours remote support from an experienced Mirus Solutions Consultant to help guide you through the process of achieving Cyber Essentials.

1 day onsite assistance/consultancy from an experienced Mirus Solutions Consultant who will work with you around the Cyber Essentials criteria

1 day onsite assistance/consultancy from an experienced Mirus Solutions Consultant who will work with you around the Cyber Essentials criteria
Submit your completed form to Mirus for review Submit your completed form to Mirus for review Monthly external vulnerability scanning (external IP addresses)
Submit your response and supply score Submit your response and supply score Dark Web Monitoring with monthly reporting (one domain)
If successful, we'll issue you with your Cyber Essentials certification If successful, we'll issue you with your Cyber Essentials certification
FREE 12 months’ Cyber Insurance* FREE 12 months’ Cyber Insurance* FREE 12 months’ Cyber Insurance*
£600   £1,000  £175 per month

 

*Terms and conditions apply

Enquire Here

Fill out the form below and one of our team will be in touch shortly.

Contact us now on 0845 094 2765 for more information about our services

Phone Us Find Us Email Us