When we consider addressing cyber risk we often focus on mitigation. Sometimes we avoid the risk or simply accept the risk. Another option is to transfer the risk, and typically this means insurance. The National Cyber Security Centre (NCSC) has recently published some guidance for organisations thinking about cyber insurance. Whilst stressing that insurance will not prevent cyber security incidents…the NCSC make the point that some insurers will give discounts when you can demonstrate that you take cyber security seriously and have basic defences in place. Cyber Essentials and Cyber Essentials Plus certification are identified as evidence of this.
As a Cyber Essentials & Cyber Essentials Plus Certification Body we provide training, advice/consultancy and certification services across the whole of Somerset, Bristol, and surrounding areas. If you achieve Cyber Essentials with us you may be eligible for cyber liability insurance offered as part of the certification. Please check out the IASME Consortium (NCSC’s Cyber Essentials Partner) FAQ for more details.
In response to COVID-19, on July 13th the NCSC added a “Home and Remote Working” exercise to their great free resource “Exercise in a Box”.
Like most of their other exercises, this 30-60 minute session is also a ‘table top’ exercise, based around discussions prompted by NCSC discussion points. The exercise is aimed at small to medium size businesses, you can check it out here: https://www.ncsc.gov.uk/information/exercise-in-a-box
As a Cyber Essentials, Cyber Essentials Plus, and IASME Governance certification body it is important that our customers know that we practise what we preach and that we meet or exceed the same standards that we expect from them. It’s equally important that we understand the effort and time it takes for small to medium size enterprises to achieve certification.
As such, we re-certify in both Cyber Essentials and IASME Governance every year. It’s not just a copy and paste of last year’s answers either! We strive to evolve and improve our security processes and incorporate the latest technical guidance and advice wherever possible.
Re-certification is a good time to review everything we do, and to remind ourselves that achieving the certification is a non-trivial task for both us and our customers.
The coronavirus lockdown presented many new challenges to small-to-medium sized organisation. Not least in the sudden change in the way we use IT with increased home working. As such, in April, Consult MB Ltd offered free external vulnerability scans to all local charities, and to the first 25 local businesses that requested it.
We’re pleased to announce that we’re extending the scheme for the next month, with free vulnerability scans for local charities and volunteer organisations. If you’re interested, please get in touch via our contact us page.
Effective security against the most common Internet based cyber threats just got clearer!
1 April 2020 marks the launch of The IASME Consortium becoming the National Cyber Security Centre Cyber Essentials Partner. #CyberEssentials is a Government backed scheme which has proven to be popular and successful with organisations seeking to protect themselves against the most common online cyber threats.
To deliver regional support to customers throughout the UK, IASME will continue to deliver the scheme via approved regional Certification Bodies (CBs). Consult MB Ltd can announce that we continue into this new era as an IASME approved CB.
Consult MB Ltd supports clients throughout Somerset, Bristol, Gloucestershire and South Wales. We do venture further afield from time to time as well! For more information about, or to apply for, Cyber Essentials please have a look at our Cyber Essentials webpage.
NCSC have put out an updated blog concerning Cyber
and also updated their Cyber Essentials FAQ:
Consult MB Ltd is pleased to confirm, in terms of both the new technical Pen Testing requirements, and the new quality requirements, that we are ready for the 1 April Cyber Essentials changes. Our customer base across Somerset, Bristol, and surrounding areas continues to grow as we provide cost effective cyber security solutions and Cyber Essentials/Plus certification to our clients.
We didn’t find the time to go to Davos this year…but the World Economic Forum have included cyber security in their Global Risks Report 2020 https://www.weforum.org/agenda/2020/01/top-global-risks-report-climate-change-cyberattacks-economic-political/
Cyber security risks feature in both their Long-Term and
Short-Term Risk Outlooks.
The unfortunate fact is that many cyber-attacks do not
discriminate between huge global corporations and the type of small to medium
size businesses that Consult MB Ltd supports in places like Bridgwater,
Bristol, Cardiff, Clevedon, Dursley, Davos…no, not Davos, but you get the idea.
If you need any help or advice with your cyber security please contact us.
In amongst the Black Friday/Black Monday/every day of the week/year sales…was ‘Small Business Saturday’ on December 7th. The NCSC supported the day by releasing a series of ‘bite sized’ videos that outline their response and recovery guidance for small businesses. You can find the videos here: https://www.ncsc.gov.uk/collection/small-business-guidance–response-and-recovery/video-collection
The NCSC have more essential guidance for small business here: https://www.ncsc.gov.uk/collection/small-business-guide
At Consult MB Ltd we love an informative cyber security video. You probably won’t find the NCSC releasing it, but check out this seasonal clip from Christmas 2014 by the Security Awareness Company https://www.youtube.com/watch?v=4z5TpZvTcg4
If you’re a small to medium sized business in Bristol, Somerset, or nearby, then please contact us if you have any needs for cyber security awareness training, for implementing robust policies and technical controls, or if you want to gain Cyber Essentials / Cyber Essentials Plus certification.
On October 23rd the National Cyber Security Centre (NCSC) published their Annual Review for the period 1 September 2018 to 31 August 2019. It’s a good read, if only to understand the breadth of the threats facing organisations in the UK. The Cyber Essentials scheme got a few mentions, with some 14,234 Cyber Essentials Certificates being issued in the last year.
You can download the report from here: https://www.ncsc.gov.uk/annual-review/2019/ncsc/docs/ncsc_2019-annual-review.pdf
Consult MB Ltd is a licensed certification body for the Cyber Essentials and Cyber Essentials Plus schemes. We support clients in Somerset, Bristol, and the surrounding areas in their efforts to establish and verify their cyber-security baseline. Please contact us if you wish to learn more about Cyber Essentials and how your organisation could achieve it.
In June the NCSC announced that they were going to create a
new partnership model with just one Accreditation Body, and minimum criteria
for the skills, knowledge and experience of Certification Bodies and their
We’re pleased to announce that from 1-April-2020 the IASME Consortium will be the sole Accreditation Body. Consult MB Ltd based in North Somerset is already licensed by the IASME Consortium to conduct Cyber Essentials and Cyber Essentials Plus audits, and we look forward to continuing to provide that service to small-medium sized organisations who seek to improve their cyber security in a cost effective manner.