What is Cyber Essentials scheme?

Cyber-hygiene is linked to cyber-security because poor cyber-hygiene adversely affect organisation's cyber security. Conversely, How the cyber security policies and procedures are designed and ...

Cyber Essentials is a government-backed and CREST-approved Cyber Security certification scheme that sets out a good baseline of cyber security suitable for all End-User organisations across all business sectors. The scheme addresses five key controls that, when implemented correctly, can prevent around 80% of cyber attacks. Today, they are readily made available in Asia through us. Click to download CE Flyer  

Cyber-hygiene is linked to cyber-security because poor cyber-hygiene adversely affect organisation's cyber security. Conversely, How the cyber security policies and procedures are designed and implemented will affect individual's cyber hygiene. So, it starts with individual establishing online-safety in his/her daily life/routines to ensure good practices are constantly exhibited through his behavior, and perhaps a constant periodic check, like an IT health-check.  Essentially, good cyber-security policy will improve individual's cyber-hygiene. As a result, members of good cyber-hygiene leads to Cyber Resilience of a larger group or community. There’s no right or wrong answer but missing those controls can directly influence cyber-hygiene, such as selecting good password, consciously install/maintain security software on their devices, protect their data and avoid any potential threat or risk sources during their online interaction and etc. 

... Look to Cyber Essentials for a start to sort out what's necessary for Cyber Hygiene ... 

Cyber Essentials is a government-backed and CREST-approved cyber security certification scheme, that sets out a good baseline of cyber security suitable for all End-User organisations across all business sectors. The scheme addresses five key controls that, when implemented correctly, can prevent around 80% of cyber attacks. Click here to download a Cyber Essentials Flyer

 

  

Whether it's striking a new business contract, part of the contract negotiation, or customer/partner requirements for on-boarding, your customers may begin to request an understanding of the security posture or data protection scheme (PDPA/GDPR) of your company or organization. Jumping start with ISO27001-Information Security Management Systems is a longer-term goal and maybe too hefty to begin with to address your immediate need. 
 
Start with Cyber Essentials scheme to guide and lead your organization, whether it’s SME or Global Multi-National Company to a globally recognized and CREST-Approved Cyber Security Certification shall earn you the required extra mileages to meet your customer/partner requirements, cut the competition queue and further secure the contracts desired. Besides, It also allows your business to gain credibility in today competitive market, grow your business global footprint with confidence and assurance.
 

Cyber Essentials packaged solutions

iTGRC Asia fixed-price solutions can assist you achieve certification to either Cyber Essentials or Cyber Essentials Plus at the pace and fee that suits your business budget.
 
All Cyber Essentials certifications are managed through our CyberComply online portal. This is a unique online service that enables companies to follow a convenient do-it-yourself approach, including managing and tracking the certification process.
 
Cyber Essentials provides a basic level of cyber security; if you are interested in progressing to a more advanced stage of information security by implementing a holistic information security management system, you can discover more by reading about ISO 27001 and the Cyber Essentials scheme.
 
 
Which packaged to choose from?
 
Some good tips before embarking on a journey to Cyber Essentials Certification

Scoping 

  • Define the Organization-wide or segmented units for Certification

Discovery

  • Determine Critical Business Process
  • Collect relevant Systems inventory (Hardware/SW/Application/Website/Middleware and etc.. ) supporting the critical business process

Risk Assessment

  • Apply the five controls concept to the systems inventory where possible and relevant 
  • Identify the Gap/s, and 
  • perform Gap Analysis which will give visibility to the risk or exposure

Risk Treatment

  • Compliance Plan for Mitigation or Remediation
  • Apply the relevant stop-gap measures i.e.; match to the requirements or standards
  • Make sure there’s a proper Change Control and Documentation Procedure 
        Documentation
  • Change Control log
  • Test and Implement
  • Review & Approval

Compliance review (Optional)

  • Consult the consultants
We completely understand that it's not easy to digest, and decide to move forward to Cyber Essentials scheme. You want to consider a bespoke consultation - Cyber Essentials Health Check
 

Do It Yourself

Cyber Essentials Do It Yourself (DIY) 

Choose this solution if you are comfortable carrying out the Cyber Essentials preparations yourself. With this option, you can submit the self-assessment questionnaire (SAQ) and undertake the assessments once you are ready for certification. This service will help you achieve CREST-accredited Cyber Essentials certification for just SG$680.

Cyber Essentials Plus Do It Yourself (DIY) 

This package provides everything you need to achieve CREST-accredited Cyber Essentials Plus certification at a price of SG$2,880

 
 
 
 

Get A Little Help

Cyber Essentials Get A Little Help (GALH) 

We recommend this option for organisations that are confident they have the skills to reach Cyber Essentials certification, but need a little guidance to point them in the right direction. This package provides all of the tools and resources you need at an affordable prices of SG$1,288 to achieve CREST-accredited certification to Cyber Essentials.

Cyber Essentials Plus Get A Little Help (GALH) 

This package provides all of the tools and resources you need to achieve CREST-accredited certification to Cyber Essentials Plus, including the external and internal vulnerability scans, on-site assessment and certification service. Only at a price of SG$3,688.

 
 

Get A Lot of Help

Cyber Essentials Get A Lot Of Help (GALOH) 

This option is an all-inclusive package for large organisations with complex organisational structures, or organisations that have no prior experience implementing an information security management system. This certification is packaged at a price of  SG$2,688.
 

Cyber Essentials Plus Get A Lot Of Help (GALOH) 

This certification package includes a full-day, on-site consultancy service, the Cyber Essentials Documentation Toolkit, Cyber Essentials Plus certification, in addition to the required tests and scans, aimed at helping you meet the requirements of the scheme and successfully achieve certification to Cyber Essentials Plus. This Get A Lot Of Help Packaged Solution is priced at SG$4,688.

 

Cyber Essentials PLUS Health Check 

The Cyber Essentials Health Check includes includes a gap analysis of your current controls against those of the Cyber Essentials Scheme. Following this assessment, our expert Cyber Essentials consultants will provide you with a detailed report explaining where your shortcomings lie, and present you with an outline of the recommended actions you should take in order to meet the requirements of the scheme.

 
If you are less certain of what to take on to protect your organization, you may visit the following to get a head-start - Cyber Security Consultancy.
 
 
Note: Cyber Essentials scheme for Asia Pacific is co-managed by the partnership between iTGRC Asia and IT Governance Ltd, UK and the Certification is delivered by IT Governance Ltd. UK under the respective legal jurisdiction. The same clause applies to all the content related to Cyber Essentials within the context of this website. If in doubt, do not move forward. Please contact info@itgrc.asia
 

iTGRC Asia Pte Ltd

Regus JTC Summit
8 Jurong Town Hall Road, Level #24-05, Singapore 609434

+65 6818 0839

   

+65 6818 0801

    info@itgrc.asia

By submitting your information to iTGRC Asia Pte Ltd, you have agreed to our Privacy Statement

Other Promotions

ISO27001, a.k.a. ISO/IEC 27001:2013 for Information security management systems

All companies are in pursuit of making bigger profit and avoiding losses and financial mismanagement. Among other benefits that ISO 27001 brings to the company one of the tools that will help companies to enhance their image , expand their market by being qualified to apply for tenders and meet customer and legal requirements. Get your business values by knowing your Security Baseline, Data Protection readiness & Regulatory Compliance (e.g. GDPR) and prepare for a seamless paradigm shift without hurting your budget but giving your business the extra miles

enablor, GDPR (data protection) Compliance process model

enablor, a new paradigmatic platform that intuitively enable your data protection, such as GDPR, regulatory compliance with ease of navigation and constant access to your own data. Brought to you by i-TRUST dk and iTGRC Asia strategic partnership, Now in Asia Pacific.

Corporate Training, E-Learning and Professional Certifications

Benchmark yourself with premium professional recognition. Get recognized with a highly Accredited Online Certificate by (IBITGQ) International Board for IT Governance Qualifications.Accredited to ISO 17024 – the international gold standard for IT qualifications

Cyber Essentials provides a basic level of cyber security; if you are interested in progressing to a more advanced stage of information security by implementing a holistic information security management system, you can discover more by reading about ISO 27001 and the Cyber Essentials scheme