One of the services we offer is Cyber Essentials assessments. This is split into two assessments, the self-assessment: which is based on answering a list of questions; and the plus assessment which is carried out on-site, looking to verify the answers in the self-assessment as well as carrying out further tests.
Those tests verify that: software is all up to date, all settings are secure as possible and malware cannot get onto the network. This is just a small list of the things we check for. With all plus assessments carried out, we always ensure the customer isn’t left out during the process. They are always kept up to date with any issues discovered and supported to remediate vulnerabilities found.
For the process to run smoothly, we work closely with the customer to capture all of the required information about the network, devices and settings prior to the assessment. This means that as soon as we get to site, the assessment can be kicked off straight away. The information that is captured forms the basis of the knowledge required for the assessment.
During the assessment, we run authenticated scans along with performing manual tests to check Active Directory configurations, email settings, anti-virus settings, and many other settings. If at any point we discover a vulnerability or issue that would result in a fail, we work with the customer to remediate the vulnerability to ensure they pass the assessment.
Our customers often say that our communication, knowledge and professionalism is what makes Equilibrium stand out from other cyber security companies. We don’t just turn up to site, run the tests and provide a long email to the customer telling them they need to remediate x, y and z. Instead, while running the tests – we work collaboratively to secure their systems and mitigate vulnerabilities found so that they pass the assessment first time.
“We have previously used Equilibrium and were very satisfied with the level of service and professionalism that they deliver. As an organisation that prides itself on the delivery of a high-quality, customer-focused service, we were very impressed and satisfied with our experience with Equilibrium. Equilibrium were engaged in their capacity as an IASME Certification Body, throughout the project they demonstrated industry knowledge, professionalism and a high standard of service delivery. We would not hesitate to engage them again in the future and I would be happy to recommend their services externally..”
-Damian Walton Director of Professional Services, IntaForensics
What is Cyber Essentials?
Cyber Essentials (CE) is a government-backed cyber security certification scheme that sets out a baseline of cyber security suitable for all organisations. The scheme’s five security controls can prevent “around 80% of cyber attacks”. The certification is a valuable indicator that the organisation has taken the necessary measures to bolster cyber security and reduce the risk of a cyber attack.