With the recent cyber-attacks the UK government has worked with the Information Assurance for Small and Medium Enterprises (IASME) consortium and the Information Security Forum (ISF) to develop Cyber Essentials, a set of basic technical controls for organisations to use.
Cyber Essentials is a UK government backed cyber security certification scheme that sets out a good baseline of cyber security. The scheme addresses five key controls (below), that when implemented correctly can prevent 80% of cyber-attacks.
Controls tested in Cyber Essentials
• Boundary firewall and gateways
• Secure configuration
• Access control
• Malware protection
• Patch management
The higher level of assurance which QX has achieved included the Certification Body testing that the five key data controls are working in practice by simulating basic hacking and phishing attacks. As a Cyber Essentials Plus certified organisation, we treat information as the most valuable asset and continually assesses our systems to ensure the highest level of information security.