Exertis has announced that it has gained Cyber Essentials PLUS certification for its professional services division, an independently verified self-assessment which assesses a company against five basic security controls. In addition, it has completed IASME governance which demonstrates that a company has prepared for the introduction of GDPR by focusing on how data is collected, maintained and protected.
The five technical security controls under the Cyber Essentials scheme cover: firewalls, secure configuration, user access control, malware protection and patch management. Cyber Essentials PLUS, a higher level of assurance, requires a qualified and independent assessor to examine the same five controls, testing that they work in practice by simulating basic hacking and phishing attacks. Cyber Essentials is a government-backed, industry supported scheme to help organisations protect themselves against common cyber attacks. Exertis professional services already holds ISO27001 accreditation, the international standard for information security.
Ian Gilbey, Exertis Technical Services Director said, "Cyber Essentials PLUS provides independent assurance that you have the proper protections in place to help prevent the vast majority of cyber-attacks. That provides our resellers with confidence to use our range of white label support services for their customers. With the deadline approaching for the GDPR to come into force, we need to ensure that we have taken the necessary measures to comply with the regulations."