Microsoft Monthly Newsletter – April 2024
26/04/2024Microsoft Monthly Newsletter – May 2024
31/05/2024In December 2023 Ultima was pleased to be announced as a certifying body for the IASME Cyber Essentials scheme. This means that we are able to certify you to the Cyber Essentials and Cyber Essentials Plus Standard.
What is Cyber Essentials?
Cyber Essentials is a government-backed, industry-supported scheme that guides businesses in protecting themselves against a range of common cyber-attacks. At its core, the scheme emphasizes five critical controls that can prevent up to 80% of cyber-attacks (https://www.gov.uk/government/news/cyber-security-boost-for-uk-firms).
These controls are:
- Secure Configuration – Ensuring that systems are configured in the most secure way for the needs of the organisation.
- Boundary Firewalls and Internet Gateways – Providing demarcation points to defend against unauthorised access.
- Access Control and Administrative Privilege Management – Controlling who has access to your data and services.
- Patch Management – Keeping software up to date and protecting against known vulnerabilities.
- Malware Protection – Implementing measures to defend against software designed to exploit your systems.
As a certification, it’s a fantastic entry point into cyber security and by ensuring your defences meet the standard, you’ll be able to display the Cyber Essentials badge on your website and email signatures
We will work with you to achieve your initial Cyber Essentials certification (a Verified Self-Assessment) followed by the full audit for Cyber Essentials Plus. If everything is aligned to the standard we will issue your certificate. If not, we will advise you on the remedial actions you need to take and re-assess you once they are completed.
If you have never had the certification before we can perform a pre-assessment to the standard and work on a gap analysis and remediation plan for you to meet the required standard
By choosing us as your certifying body, you will benefit from our expertise, experience, and support throughout the process. We can also offer a variety of other cyber security services, such as penetration testing, fully managed patching services (aligned to the Cyber Essentials standard), vulnerability scanning, and cyber awareness training. This can help you enhance your cyber resilience and comply with other standards, such as ISO 27001 and GDPR.
For more details on our offerings for Cyber Essentials please speak to your account manager and our datasheet is available here