What is Cyber Essentials?
What about Cyber Essentials Plus?
Why should your organisation be Cyber Essentials certified?
Software running on computers and network devices should be kept up-to-date and have the latest security patches installed.
Devices that can access the internet should be protected against malware infection through the use of suitable malware protection software.
Computers and network devices should be configured to reduce the level of inherent vulnerabilities and provide only the services required to fulfil their role.
Information, applications and computers within the organisation’s internal networks should be protected against unauthorised access and disclosure from the internet, using boundary firewalls, internet gateways or equivalent network devices.
User accounts, particularly those with special access privileges (e.g. administrative accounts) should be assigned only to authorised individuals, managed effectively and provide the minimum level of access to applications, computers and networks.