CYBER ESSENTIALS PLUS
Cyber essentials Plus
The next step following gaining a Cyber Essentials certification is to get Cyber Essentials PLUS. Cyber Essentials PLUS offers a much higher level of assurance to businesses as it involves an independent audit from a highly qualified Cyber Essentials Certification Body such as ITWiser. The tests look at your Cyber Essentials answers and checks for evidence that key parts are working as you expect them to be. The test includes the five technical controls that should be in place which are:
- Boundary firewalls and internet gateways
- Secure configuration
- Access control
- Malware protection
- Patch management
You will also have an External Vulnerability Assessment and an Internal Vulnerability Assessment as part of the process.
Cyber Essentials PLUS assessments are dependent on the size and complexity of the organisation being tested as a certain number of systems must be tested.