Occam achieves Cyber Essential Plus standard

October 4th, 2017 in News

Cyber Essential Plus

Occam’s security controls have successfully passed an external assessment and we have been awarded a Cyber Essentials Plus badge.

The Cyber Essentials scheme has been developed by the UK Government and industry to fulfil two functions. It provides a clear statement of the basic controls all organisations should implement to mitigate the risk from common internet based threats, within the context of the Government’s 10 Steps to Cyber Security. And through the Assurance Framework it offers a mechanism for organisations to demonstrate to customers, investors, insurers and others that they have taken these essential precautions.

Cyber Essentials offers a sound foundation of basic hygiene measures that all types of organisations can implement and potentially build upon. Government believes that implementing these measures can significantly reduce an organisation’s vulnerability. However, it does not offer a silver bullet to remove all cyber security risk; for example, it is not designed to address more advanced, targeted attacks and hence organisations facing these threats will need to implement additional measures as part of their security strategy. What Cyber Essentials does do is define a focused set of controls which will provide cost-effective, basic cyber security for organisations of all sizes.

The Cyber Essentials Scheme focuses on Internet-originated attacks against an organisation’s IT system. Cyber Essentials concentrates on five key controls. These are:

  1. Boundary firewalls and internet gateways – these are devices designed to prevent unauthorised access to or from private networks, but good setup of these devices either in hardware or software form is important for them to be fully effective.
  2. Secure configuration – ensuring that systems are configured in the most secure way for the needs of the organisation
  3. Access control – Ensuring only those who should have access to systems to have access and at the appropriate level.
  4. Malware protection – ensuring that virus and malware protection is installed and is it up to date
  5. Patch management – ensuring the latest supported version of applications is used and all the necessary patches supplied by the vendor been applied.

Tags:

Back to news

For further information please contact us

Contact us