As of 1 January 2016, all suppliers to the Ministry of Defence are required to comply with the Cyber Essentials scheme. The MOD also announced – significantly – that “this requirement must be flowed down the supply chain.” This means that Cyber Essentials certification is not just for companies in a direct business relation with the MOD, but companies in the supply chain also need to adopt the five controls and gain certification to prove that baseline cyber security measures are in place. This is an important step forward in recognising the role that the scheme can play in defending against cyber crime.
Since its launch in 2014, the Cyber Essentials scheme has been adopted by thousands of companies aiming at winning and/or maintaining government contracts. IT Governance has certified and recertified hundreds of companies, from small and medium-sized organisations to large corporations. Being certified does not grant a life-long compliance with the five requirements, however: certification has to be renewed every year to maintain the status and demonstrate basic cyber hygiene.
How to get Cyber Essentials certification
Getting certification for the first time – or renewing certification – is not as difficult as it may seem – it is a straightforward process. With IT Governance, a CREST member and accredited Cyber Essentials scheme certification body, it is even easier. All you have to do is identify the scope of your certification, submit the questionnaire demonstrating its level of compliance with the five control requirements, and let IT Governance conduct an external vulnerability scan of your networks and applications. Once you successfully pass the assessment, you will be awarded the Cyber Essentials badge.
Depending on the amount of help you need to gather data and information to fill in the questionnaire, IT Governance has the best solution for your requirements. Starting from as little as £300, you can get Cyber Essentials certification and secure new business!