As of April 1st 2020, the NCSC’s Cyber Essentials partner will be IASME Consortium. Falanx Cyber are pleased to announce that we continue to be an approved certified body for Cyber Essentials working under the IASME Consortium framework.
What is Cyber Essentials?
Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.
Cyber attacks come in many shapes and sizes, but the vast majority are very basic in nature, carried out by relatively unskilled individuals. They’re the digital equivalent of a thief trying your front door to see if it’s unlocked. Our advice is designed to prevent these attacks.
What has been relaunched?
From 1st April 2020, the delivery of the Cyber Essentials scheme changed to a single Cyber Essentials Partner, IASME Consortium.
The fundamental requirements of the scheme remain the same but Falanx Cyber customers may notice some changes to the way re-certification is conducted.
I am in the process of certifying for Cyber Essentials and Cyber Essentials Plus with a non-IASME affiliated organisation, do I have to start the process again?
For any customers in the process of certifying under the scheme prior to the 1st April 2020 will need to have them completed by 30th June 2020. New certifications from April 1st will be conducted under the IASME Consortium framework.
What changes will there be when my company is re-certified?
The process will now be managed via an online portal, and with regards to Cyber Essentials (basic) there will now no longer be the requirement for an external vulnerability assessment.
Do you have to renew Cyber Essentials and Cyber Essentials PLUS?
Yes, all certificates issued from the 1st April 2020 will now expire at 12 months from assessment pass date, where as previously it would only be a recommended reassessment date.
If you are one of the organisations that is still in the process of certification under our previous accrediting body (CREST), then you will notice that the certificate still displays a recommended retake date. This may seem confusing, but unfortunately during the changeover period is unavoidable. To simplify this process all CE and CE+ certificates will now automatically expire on the 30th June 2021, regardless of which accrediting body issued the certificate.
Further FAQs on the Cyber Essentials service can be found here on the NCSC website https://www.ncsc.gov.uk/information/cyber-essentials-faqs