Grafx are recommending to all business clients that they gain Cyber Essentials accreditation.

There are constant threats to businesses (Mac and PC) and we strongly believe it is time to educate users and implement changes to protect a company’s interests.

The Cyber Essentials Scheme was launched by the UK Government in 2014 in order to encourage organisations to adhere to good practice in information security and internet safety.  Created by CESG (the information security arm of GCHQ), Cyber Essentials is regarded as the base level standard of affordable IT security which small to medium companies should meet.

Cyber Essentials fulfils two key functions:

  • It provides a statement of the basic controls that all organisations should implement to mitigate the risk from common cyber threats
  • It lays out a foundation of basic measures and procedures that organisations should put in place

How does the Cyber Essentials Scheme help your organisation?

Although it does not offer a solution to reduce all cyber security risks, nor does it address more advanced threats, it is often considered sufficient protection for the most common threats to most Small to Medium businesses.

As of October 2014, certain ICT Government contracts will only be awarded to companies which have been assessed as meeting the Cyber Essentials standards.

What is the process?

First talk to Grafx so we can help determine which level of Cyber Essentials that would best fit your organisation.

Cyber Essentials – a foundation level certification which organisations can get following a verified self-assessment. It offers a basic level of assurance and can be achieved for a relatively low cost.

Cyber Essentials Plus ­­– a certification obtained after a more complex process of external and internal independent testing. It offers a much higher level of assurance by covering 5 areas:

  • Boundary Firewalls and internet gateways
  • Secure Configuration
  • User Access Control
  • Malware Protection
  • Patch Management

Certifying Body

Grafx recommend PGI as an official UK Cyber Essentials and Cyber Essentials Plus certifying body.

PGI offer an interactive Cyber Essentials portal that guides you through the process of becoming certified. Grafx and PGI are available to help your business throughout the process.

After successfully completing the certification process, you will receive Cyber Essentials badge for your official documentation allowing third parties to differentiate between organisations and their levels of cyber security.

News from PGI

PGI have released the following message following on from the news of the widespread WannaCry ransomware attack that affected the NHS. (May 2017)

PGI Insight

Some issues of Cyber Digest below:

Cyber Digest October 2017

Cyber Digest March 2017

Cyber Digest February 2017, Part 2

Cyber Digest February 2017, Part 1

Cyber Digest January 2017