Cyber Essentials Logo

Cordon Sanitaire Cyber Essentials

Cyber Essentials is an integral Baseline in achieving European Unions General Data Protection Regulation (GDPR) Readiness. See our GDPR Readiness service.

View our Cyber Essentials Practitioners Certification.

The Cyber Essentials scheme is a key deliverable of the UK’s National Cyber Security Programme for businesses of all sizes. It applies a 10 Step rule that delivers the basic controls that all organisations, using online systems, should implement to mitigate the risk from common Internet-based threats.

Demonstrate that your organisation has the right tools, processes and awareness in place to protect your business and your clients’ data from the most common cyber-attacks.

The UK Government Cyber Essentials Certification scheme provides the most cost effective and efficient way of establishing the minimum grade of recommended Cyber Security protection for any organisation. Benefits from achieving certification include, but are not limited to:

  • Making organisations securer from common Cyber threats
  • A Differentiator, providing a competitive selling point
  • Boosting reputations
  • Insurance Cover benefits
  • Compliance with Government agency supplier requirements
  • Successfully tender for government contracts
  • Display the Cyber Essentials Logo
"From April 2015 no Certificate could mean NO Government work.
If you supply or have the ambition to supply local or national UK Government agencies, they will ask you for your certificate."

Getting Certified can be a time consuming process. You can do it yourself or we can work with you to remove the friction and overhead. Our service is a client inter-active service where we provide the legwork and liaison with the certification body to ensure when your submission for certification is made, that you meet the criteria. Critically we ensure the appropriate knowledge transfer to your team.

There are two levels of certification:

Cyber Essentials Logo
Cyber Essentials Plus Logo
  • Requires the organisation to complete a self-assessment questionnaire
  • External vulnerability scan of Internet-facing networks and applications to chekc for vulnerabilities
  • Independent review by an external certifying body.
  • All Cyber Essentials requirements
  • Internal network scan and tests to systems by an external certifying body, using a range of tools and techniques to validate patch levels / anti-virus / configuration consistency.

There are 5 (Five) key controls required for both levels of the scheme. Controls that can eliminate 80% of online threats:

  • Secure systems configuration
  • Firewalls and Internet gateways
  • Access controls and privilege (administrator) account management
  • Patch management
  • Malware protection

Additional requirements exist for organisations wishing to provide services into the UK Ministry of Defence. Please Contact Us for specific information relating to the 'Defence Cyber Protection Partnership (DCPP)' requirments.

With Cordon Sanitaire you can expect a personalised service that does not stop once you are certified. You will receive regular updates to the program as it evolves and we will be there to assist you maintain compliance so at renewal there are no surprises.

What Industry has to say about Cyber Essentials

“The Information Commissioner’s Office supports the Cyber Essentials scheme and encourages businesses to be assessed against it. Protecting personal data depends on good cyber security, and the threats and challenges are getting ever more sophisticated. All too often organisations fail at the basics. This scheme focuses on the core set of actions that businesses should be taking to protect themselves, their customers, and their brand. Cyber Essentials enables businesses to demonstrate that they are taking action to control the risks”.
- Christopher Graham, Information Commissioner, Information Commissioner’s Office.

“Increasing awareness of the cyber security threat to business is an important issue to the CBI, so we are pleased to be one of the first organisations to take part in the Cyber Essentials scheme. Business leaders will benefit from the access to helpful and authoritative cyber security guidance. Encouraging firms to adopt this scheme is a positive step towards greater awareness of cyber security and more widespread action to manage the risks”.
- John Cridland, Director General, Confederation of British Industry.

Supporting Resources

Other common areas of services and support we have found Cyber Essentials customers benefit from include:

  • Disaster recovery & Business continuity policy and planning
  • User awareness - Social engineering prevention briefing and training
  • Mobile working & Device security
  • Senior Executive digital profile security mentoring
  • Corporate Governance - Policy and Compliance
  • Security Brokerage - Trusted specialists with industry wide relationships, a 360-degree solution perspective can ensure best fit, form and function from your security and risk mitigation solutions.