• Opening Hours 24/7

  • info@douXnet.com

  • PH : 020 3488 9789

Cyber Essentials Plus

In order to achieve the Cyber Essentials Plus certification, you must have already obtained the self-assessed certification and successfully pass the plus certification within three months, which, if not already achieved, can help you with if you have not yet achieved this. Obtaining the plus certification and implementing the required controls could shield your business from up to 80% of the common threats from the internet.

Adopting the Cyber Essentials scheme is likely to become a major requirement to win business in many sectors in the future – and to demonstrate this, from 1 October 2014, the government has required suppliers bidding for certain information-handling contracts to be Cyber Essentials certified.

The certification is backed by the industry, as well as the business support and lobbying organisation the Federation of Small Businesses. A number of insurance companies are also starting to offer incentives for organisations that conform to the scheme.

A company can gain certification badges which allow a company to advertise the fact that it adheres to a government-endorsed standard.

Certification

The certification consists of five baseline controls that businesses should have in place to reduce the risk of data breaches from internet-based attacks, these being:

  • Boundary Firewalls
  • Secure Configuration
  • Access Control
  • Malware Protection
  • Patch Management

Achieving Cyber Essentials Plus

As part of the assessment, the company will be required to pass an external and internal vulnerability assessment performed by staff from InfoSec Governance. This vulnerability assessment can be performed onsite or remotely via a Microsoft Teams session.

Downlaod Our Free PDF Cyber Security Guidance

Get the free PDF
Get the free PDF
alt alt
Microsoft Azure

Frequently Asked Questions

In order to achieve Cyber Essentials you also need to achieve Cyber Essentials basic (the self-assessment), this needs to be renewed annually.

Yes, as part of the Cyber Essentials Plus audit, we need to perform a authenticated (administrative) patch scan. This requires us to have local administrative access to all machines in scope of the test. This can be performed by setting up a dedicated testing account specifically for testing, so that we don’t utilise your normal account.

If you fail the Cyber Essentials Plus audit, we will notify you at the time and explain how you can remediate the issue. You will have up to 30 days to resolve any issues.

Yes, both Cyber Essentials and Cyber Essentials Plus are annual certifications. Failure to renew annual will result in the loss of your certification.

When it comes to the Cyber Essentials Plus audit, what is in scope is basically defined by what was included in the Cyber Essentials Basic assessment. This includes any devices which you manage and maintain. For example if you have servers that you manage patching on, these are in scope. The same goes for cloud based servers, if you manage those for patching, they are in scope. However, if you have a website that is managed by someone else, for example a third-party hosting provider, this is out of scope.

Get in touch with our team today!

OR

Request a Meeting

Click to receive a free 30 minutes one to one consultation with our technical Lead.
Book a date
We are here to answer your questions 24/7

Need for IT Solution and Services?

Talk to Us

Part of zachsys Family

douXnet Ltd is a Private limited Company registered in England and Wales. Douxnet IT Solutions Private Limited (DISPL) is a Private Limited Indian Non-Government Company incorporated in India on 12 July 2018. Both companies operate under zachsys Group of companies.

Useful link

Company Address

Great Britain:

douXnet Ltd, 4th Floor, Silverstream House, London, Great Britain, W1T 6EB

India:

douXnet IT Solutions Private Limited, V-538 Pirappancode P.O, Venjaramodu Thiruvananthapuram, Kerala, 695607
Facebook Instagram

© douXnet 2024 . All Rights Reserved

Book a Date

for Consultancy