Help is at hand
Small and medium-sized businesses without the expertise to work through Cyber Essentials certification themselves, or to implement its technical requirements, can get help from the Cyber Advisor scheme. This offers a directory of NCSC Assured Service Providers that can help you improve your cybersecurity processes, close off vulnerabilities and meet the Cyber Essentials criteria.
Of course, there are plenty of independent contractors who can offer similar services. But by working with a member of the scheme, businesses can be sure that any advice offered comes from a source that meets NCSC-approved standards. The individual advisor will have passed an independent assessment, which gauges their understanding of Cyber Essentials’ controls and their ability to deliver appropriate support.
You’ll have to pay for the service: the cost will be dependent on the advisor and the size of the job. However, it’s an investment that should pay off in the longer term. Engaging an expert saves you time researching and trialling solutions, and ensures you’re not inadvertently implementing security measures that are outdated or ineffective.
Working with an accredited advisor also helps ensure that you’ll get your Cyber Essentials certificate first time. Providers must also maintain a detailed understanding of the latest version of the NCSC Cyber Essentials Requirements for IT infrastructure, and be able to identify appropriate steps that a business can take to mitigate gaps in Cyber Essentials requirements.
To learn more, visit The Cyber Scheme ( thecyberscheme.org), which is currently the only NCSC-certified assessment body offering Cyber Advisor-relevant services. And if you’re engaging with an advisor who claims to be qualified, ask to see their certificate: all certificates carry a QR code, which allows them to be validated in real-time.