Welcome to New Controls in Cyber Essentials

IT Ambulance welcomes the changes to the standards set by Cyber Essentials that have now come into force for auditors.

Cyber Essentials is the UK Government endorsed MINIMUM standard that all organisations in the UK should adopt as their stance towards data security. The scheme is largely under the umbrella of the National Cyber Security Centre (NCSc) who are the public advisory arm of our Spooks at GCHQ.

The Cyber Essentials standard was originally set in 2014 and frankly this was too long ago to be a reflection of modern working practices in the post pandemic world. Cloud Services, Home Working and a more meaningful, less headline grabbing take on Passwords and Multi-Factor Authentication have all been revisited in this version.

Yet, we are deeply concerned as a business as to how many UK organisations have buried their heads in the sand regarding their obligations to Cyber Essentials particularly in regard to the protection of Personally Identifiable Information. Sadly most IT Support companies just are not up to speed on this advice and we are looking forward to the governments industry wide review of professional standards in IT.

We think Cyber Essentials is, well, still essential … – NCSC.GOV.UK