This is big! Meeting the #cyberessentials requirements is important to show an organisation can be trusted to keep data secure. That the #electoralcommission still haven't done enough to pass it is incredibly shoddy.
#electoralcommission #cyberessentials
"The Cyber Essentials accreditation was created to ensure the highest standards of IT security are in place to safeguard the digital economy. With the threat of cyber attacks today, it’s essential to implement the very best security measures – and not just the essentials."
More meaningless words. Also, the scheme is literally called 'Cyber Essentials' - so it is JUST the essentials.
The amount of bullshit these 'cloud' companies produce is unreal.
"By implementing Cyber Essentials, we can drive productivity in line with best practices, preventing common breaches while identifying and eliminating threats. This allows us to focus on optimising systems and services for our customers."
Lots of meaningless words here.
I wonder if anyone gets ISAME to approve Cyber Essentials before the 3rd try as they’re incentivised to fail you 3 times so they can collect the fee again.
Also, when they say what’s your policy on giving admin rights, and you say the policy is “users aren’t allowed them, only the 2 senior engineers get those rights” do they then reject and ask “what’s the policy”. That is the policy for 20 years and isn’t going to change. Users don’t get admin rights, period.
I’m always intrigued by how Universities are responding to #CyberEssentials with #cots for Mobile Device Mansgement (#MDM) that target #macos and #Windows. #linux seams to be never supported, or one is told ‘#WindowsSubsystemLinux is suitable, or _just_ use a virtual machine’.
Yet I never seem to see discussions/information with how MDM System will impact on #researcher productivity, especially in the #sciences where #programming & #experimentation & #development is prudent.
#cyberessentials #cots #mdm #macos #windows #linux #windowssubsystemlinux #researcher #sciences #programming #experimentation #development
#itsupport #cheshire #microsoft365 #cybersecurity #cyberessentials
Cyber Essentials Updates in the U.K. 🇬🇧
https://www.ncsc.gov.uk/information/cyber-essentials-technical-requirements-updated-for-april-2023
https://iasme.co.uk/articles/what-are-the-changes-to-cyber-essentials-this-year/
#cyberessentials #cybereasentialsplus #cybersecurite
#cybersecurity #cyberawareness #cyberessentials
Here is a link to the latest @NCSC Threat Report:
https://www.ncsc.gov.uk/report/threat-report-13th-january-2023
One noteable takeaway for smaller companies is that prevention is the best first step to securing your business, and pointing towards #CyberEssentials
I wonder if there any statistics somewhere showing the actual benefit to Pubiic Sector procurement that forcing small businesses to comply with the often arbitrary and incomplete Cyber Essentials rules and requirements gives?
Because I remain convinced as it stands it does more to boost the pockets of those running the scheme and vendors flogging new stuff people don’t really need than providing actual meaningful benefit.
NCSC has announced that micro/small organizations in the UK that provide aid services and the charities can get FREE support for the Cyber Essentials programme.
If you meet the criteria, don't hestitate to apply for it.
#NCSC #CyberEssentials #cybersecurity #hackers
https://www.ncsc.gov.uk/information/funded-cyber-essentials-programme
#ncsc #cyberessentials #cybersecurity #hackers
I don't know if #yearininfosec is a thing, but what the hell:
I started the year with an #avionics embedded job with @cybergibbons - a curious device with some interesting findings.
I looked at quite a few consumer-grade routers. Some were bad, some were good.
I did a few #threatmodelling and consultancy engagements which I enjoyed a lot. I liked the freedom of communication.
I went to #RSA and #DEFCON - I even got to speak at the #AerospaceVillage (slightly terrifying) and did around 300 landings in our flight sim with my amazing colleagues and people who queued for ages to have a go! I did a video for it too! https://www.youtube.com/watch?v=6DHi-qC1jww&t=2s
I got #covid finally :(
I did quite a few #cyberessentials jobs, I actually enjoy them.
I met with my lovely colleagues in person more than last year.
I had an amazing time at sea with @cybergibbons on a whole-ship maritime job. Hard work but very satisfying, and hope to do more of those.
Early next year I'll be speaking at #SANS in London.
Most of all for #2023goals I'll be making a better personal v work balance and look forward to seeing friends and doing more fun stuff.
Cheers 🥃
#yearininfosec #avionics #threatmodelling #rsa #defcon #aerospacevillage #COVID #cyberessentials #sans #2023goals
The Cyber Resilience Centre for the South East is working in partnership to complement and add value to the services of partners like us. The Cyber Resilience Centre for the South East is a police-led partnership with academia and businesses aimed at improving cyber resilience in businesses in the South East of England. They provide businesses with access to the latest local as well as national information on emerging cyber threats, criminal trends, best practice for cyber resilience.
Sign up for FREE now to receive your welcome pack and start that safer #CyberEssentials journey.