Concept Management have successfully passed their Cyber Essentials Plus Audit.
This is in line with other successful audits recently, such as the BSI UKAS BSIUKAS Accredited ISO:27001 and membership of the BSIA
Mark Wilding say’s again that ‘ This is testament to all the hard work from all our staff to achieve another industry accreditation and the reason we do these is to offer our client’s, complete peace of mind knowing that all our processes are independently audited to a particular standard and none higher than the Cyber Essentials Plus Standards’
About Cyber Essentials Plus
Keeping UK Businesses Safe
A primary objective of the UK Government’s National Cyber Security Strategy is to make the UK a safer place to conduct business online and all suppliers must be compliant with the new Cyber Essentials controls if bidding for government contracts which involve handling of sensitive and personal information and provision of certain technical products and services.
The Government worked with the Information Assurance for Small and Medium Enterprises (IASME) consortium and the Information Security Forum (ISF) to develop Cyber Essentials, a set of basic technical controls to help organisations protect themselves against common online security threats.
The full scheme, launched on 5 June 2014, enables organisations to gain one of two Cyber Essentials badges. It is backed by industry including the Federation of Small Businesses, the CBI and a number of insurance organisations which are offering incentives for businesses.
Cyber Essentials is suitable for all organisations, of any size, in any sector.
From 1 October 2014, Government requires all suppliers bidding for contracts involving the handling of certain sensitive and personal information to be certified against the Cyber Essentials scheme.
The Cyber Essentials scheme identifies some fundamental technical security controls that an organisation needs to have in place to help defend against Internet-borne threats.
Selected by industry experts, the technical controls within the scheme reflect those covered in well-established standards, such as the ISO/IEC 27000 series, the Information Security Forum’s Standard of Good Practice for Information Security and the Standard for Information Assurance for Small and Medium Sized Enterprises