What is Cyber Essentials?
The Cyber Essentials (CE) scheme has grown significantly since its first launch in 2014. Developed by the government body the National Cyber Crime Security Centre (part of GCHQ) it continues to evolve and offers a risk-based approach to cyber threats.
There is no single answer in security, as there are always several factors to consider. Cyber Essentials was developed as a common question set based on analysis of real cyber-attacks.
Cyber Essentials is not intended to be a silver-bullet for all forms of cyber-attack, but to offer organisations a significant step in their journey to protecting themselves in cyber space. For most organisations this will reduce their risk of cyber-attacks by 80%.
What does it do for my business?
The question set is aimed at all sizes of organisation and is based around a simple risk scenario. They were developed from investigations into many corporate compromises to help select the most effective controls, that were also practical to implement and relatively straight forward to test.
Organisations often have competing priorities for resources and therefore, Cyber Essentials focuses on a small but critical number of technical controls that if implemented consistently will make a tangible difference to an organisation’s cyber security and will minimise the damage caused when someone opens a malicious attachment or click on a link.
What's in it for me?
All companies should implement Cyber Essentials for the following reasons:
•The scheme is risk based, practical and widely recognised
•The scheme enables certified users to display the Cyber Essentials logo and certificate
•Cyber Essentials certification is the minimum standard for public sector bids
•The scheme is cost effective
•It comes with £25,000 of free cyber insurance
•Cyber threats are on the increase in all sectors and there is no sign of this diminishing
•It enables a positive dialogue with customers and clients
•It is supported by the Information Commissioner’s Office and National Cyber Security Centre
Zenzero the 'no jargon' security experience
We will guide you through all the questions that form the basis of the Cyber Essentials scheme. If required, we will contact your managed service provider to identify the answers. Once the questionnaire is completed, we will submit on your behalf to the certification body.
In the event that there are any queries we will manage these on your behalf. To date, we have achieved 100% success for our clients. Once certification is achieved, we will provide you with the certificate, logos to use on your website and other materials, and details of the free cyber insurance for qualifying organisations.
Software to record and document the process
Each user will be provided with access to the Zen Compliance software as part of the program. This software contains all the questions and responses to the Cyber Essentials questions. Plus:
•A document repository
•A risk register
•Non conformance log
•Regular cyber updates
In order to complete the certification, IT advice and process consultancy are included. This will include advice on how to complete the questionnaire, together with details of any actions that may need to be completed before seeking certification.
There are several additional services we also offer at an additional cost;
•Other compliance standards e.g.ISO9001, PCI DSS
•Phishing attacks and Email vulnerabilities
At Zenzero, we realise that cyber security is also about human behaviour; that’s why we partner with other experts to provide a holistic approach to people, processes and technology.
Want to know more? Get in touch by calling 0333 3209 900 or alternatively, email firstname.lastname@example.org and a member of the team will be in touch.