New Home

Get assessed to Cyber Essentials

Get assessed to IASME Governance (this includes Cyber Essentials & GDPR requirements)

Cyber Essentials Scheme

IASME is one of just five companies appointed as Accreditation Bodies for assessing and certifying against the Government's Cyber Essentials Scheme. The Scheme focuses on the five most important technical security controls. These controls were identified by the government as those that, if they had been in place, would have stopped the majority of the successful cyber attacks over the last few years. Find out more here.

IASME Governance Standard

The IASME Governance standard, based on international best practice, is risk-based and includes aspects such as physical security, staff awareness, and data backup. The IASME standard was recently recognised as the best cyber security standard for small companies by the UK Government when in consultation with trade associations and industry groups.  The IASME governance self assessment includes the Cyber Essentials assessment within it as well as an assessment against the requirements of the GDPR.

The audited IASME certification is seen as a realistic alternative to ISO27001 by an increasing number of companies.  Find out more and download the standard for free here.

General Data Protection Regulations (GDPR)

The European General Data Protection Regulation (GDPR) was adopted by all EU member states in April 2016.  This allowed businesses 2 years to prepare for when the law will become enforceable in May 2018.  In August 2017 The Right Honorable Matt Hancock MP, the Minister for Digital published  A New Data Protection Bill: Our Planned Reforms.  This document will convert the EU law into UK law in readiness for BREXIT.  

Under the GDPR all businesses that wish to provide goods and services to EU residents will be required to conform to the requirements it lays down.  Businesses will no longer need to opt in by registering with the Information Commissioner’s Office (ICO).  All businesses will be deemed in scope, unless they prove otherwise. Undertaking Cyber Essentials and IASME Governance Standard, including the GDPR assessment elements, is a good way to show your customers that you have put things in place to meet these regulations. You can see more information on GDPR here.

 Find out more about the regulation and associated requirements here.

Certification against both IASME governance and the Cyber Essentials will indicate a good level of all-round information security. This will be particularly true if you also pass the GDPR assessment questions and indicate that you have made efforts to ensure your company is ready for the introduction of the regulation.

IASME on Twitter