intelligent

IASME Governance are listed on our directory of certified organisations .

What do you consider the main benefits for SMEs who obtain certification ?

The preparation and process of getting certified to Cyber Essentials or IASME Governance will give an organisation a clear picture of their cybersecurity and an opportunity to improve . Benefits include :

Certification gives SMEs the peace of mind and the outward reassurance that they have implemented the core controls that help reduce the risk of cyberattacks

SMEs with a turnover of less than £ 20 million which certify their whole organisation to Cyber Essentials get included Cyber

Security insurance worth £ 25,000

Dr Emma Philpott MBE , CEO of the IASME Consortium

EVEN IF A BUSINESS HAS SOME BASICS

IN PLACE , CYBERCRIMINALS CAN FIND THEIR WAY IN BY USING

THE WEAKEST LINK IN THE

CHAIN . principles . These include risk assessment , policies and procedures , staff training and GDPR requirements . Other important areas that are fundamental for a modern business include backing up files , incident response and recovery planning .

What are the key objectives for SMEs who choose to work with you ?

Organisations wishing to certify their business or product to one of our schemes are usually motivated by two key factors .

First , they want to prioritise cybersecurity and data protection as these are considered important . Certification gives them a clear and affordable way to prove they are doing everything they should .

Second , contracts , funding and grants are increasingly stipulating that a company has Cyber Essentials certification as a pre-requisite . Having a certification also demonstrates to customers , those in your supply chain and other stakeholders that you are taking cybersecurity seriously . Companies that get Cyber Essentials and

More and more contracts are asking businesses to prove they are managing their information security . Getting certified is a straightforward way of demonstrating that a business has its house in order .

What are some of the barriers to this training / certification and how do you work with end users to overcome these ?

Many small businesses have usually got all their resources tied up running the business rather than focused on IT and cybersecurity . Most people understand cybersecurity to be part and parcel of technology , and if their business is not associated with IT and they are not a person that understands technology , this could be something that they worry about .

The barrier to understanding things associated with technology for non tech people can be significant and this common block is something that needs to be understood if we want people to start on their essential journey into cybersecurity . Until recently , much of the cybersecurity information guidance started at too high a level for those with no IT