The Cyber Essentials scheme, developed by the UK government and industry, provides organisations with clarity on what essential security controls they need to implement to mitigate the risk from common internet based threats, within the context of the Government’s “10 Steps to Cyber Security”.
Through the Assurance Framework the schemes offers a mechanism for organisations to demonstrate to customers, investors, insurers and others that they have taken these essential precautions.
Cyber Essentials concentrates on five key controls. These are:
Boundary firewalls and internet gateways - these are devices designed to prevent unauthorised access to or from private networks, but good setup of these devices either in hardware or software form is important for them to be fully effective.
Secure configuration – ensuring that systems are configured in the most secure way for the needs of the organisation.
Access control – Ensuring only those who should have access to systems to have access and at the appropriate level.
Malware protection – ensuring that virus and malware protection is installed and is it up to date.
Patch management – ensuring the latest supported version of applications is used and all the necessary patches supplied by the vendor been applied.
T-Systems Ltd. has been assessed by the IT Governance Ltd against the Cyber Essentials Scheme Test Specification and certified for the level of “Cyber Essentials” meeting government-endorsed standards. To find out more about Cyber Essentials please go to the website.