Cyber Essentials PLUS

Test your security against common Cyber Attacks!

Testing your network with industry-standard tools

Cyber Essentials PLUS builds on the foundation set by Cyber Essentials by testing your security against common Cyber Attacks using industry-standard tools. 

Cyber Essentials Plus provides you with a secure platform to operate from when working towards GDPR compliance. It ensures that you have the correct processes and procedures in place when handling personal data and provides you with an understanding of the security measures you must have in place to comply with GDPR.

Cyber Essentials Plus covers the same 5 key areas as Cyber Essentials:

Access Control

Can users only access what is required for their job?

Secure Configuration

Are your systems configured to make them secure?

Malware Protection

Is your anti-virus adequate?

Boundary Firewalls and Internet Gateways

Are they set up to effectively protect your network?

Patch Management

Are you using the latest and most secure versions of software?

Cyber Essentials PLUS  involves an onsite technical audit of the systems that are in-scope for Cyber Essentials.  The audit includes an assessment of a representative set of user devices, all internet gateways and all servers with services accessible to internet users.  The assessor will test a suitable random sample of systems (typically around 10%) and then make a decision as to whether further testing is required. 

The assessor will need to visit your head office and a representative sample of your offices in order to carry out the tests.  The quantity of other offices depends on the complexity of your organisation.  Some tests may be carried out remotely provided that the agreed on-site visits have been carried out.

Achieving Cyber Essentials PLUS demonstrates that your business has a high level of cyber security.  It proves that your network is protected from common attacks and significantly reduces the risk of your organisation suffering the consequences of a cyber-attack.  This in turn gives your clients confidence that their data will be handled appropriately and securely.

Cyber Essentials PLUS Services

Xcina IS is accredited by The IASME Consortium as a certification body for Cyber Essentials, and can help guide you through the certification process, providing advice on remediation as and where required.

If you want to reassure customers that you are working to secure your IT against cyber attack and attract new business with the promise that you have cyber security measures in place, contact us today for information about how to get started.