So you have Cyber Essentials? You Probably don't.

100% of Organisations we visit who have Cyber Essentials or Cyber Essentials Plus, don’t meet the requirements! Come and find out the common things we see that don’t meet the requirements, and how to fix them.

We love the intent behind Cyber Essentials, but often, the implementation falls short of the requirements. This is largely for two reasons:

1. It’s pretty easy to fill out the questionnaire with the correct answers and get a certificate, as the assessor only has your answers to go on
2. If you go for Cyber Essentials Plus, the audit process is based on ‘sampling’, and uses your answers in the questionnaire as a basis to work from. So - if you don’t declare an in-scope service - like SaaS applications - they don’t get tested, among many other things!

Ben Smith is an NCSC Certified Cyber Advisor, specifically for Cyber Essentials, and will lead this workshop with the help of some of the wider Optimising IT technical teams. Ben has extensive experience in delivering valid certifications for Organisations in addition to carrying out Gap Analysis audits and recommendations.

Optimising IT is an NCSC Assured Services Provider for Cyber Essentials.

The session will also be supported by Todd Gifford, who has 25 years in the industry and holds CISSP and ISO27001 Lead Auditor Certifications.