We are pleased to announce that we are now Cyber Essentials certified. While we have always taken the utmost care over how we handle information security, this means that you can be sure that we have well defined procedures and policy over how we keep your source code, servers and user data safe. In general, we’re constantly improving the way we handle security, and will be going further than this – now that we’ve taken this step, we’re looking to take it further and get full ISO 27001 certification.
What is the Cyber Essentials Scheme?
The Cyber Essentials Scheme is a UK government scheme to help certify that SMEs meet a standard of security over devices and information, and are adequately protected against cyber threats. Becoming Cyber Essentials compliant involves 5 major controls covering how you manage your office networks, software updates and device antivirus, and policies for managing who has access to essential and vulnerable systems.
Why should my business be part of this?
Cyber security is no longer an issue which just affects large corporations. According to the UK government, one in four businesses reported a cyber breach or attack in the past 12 months. Cyber attacks are becoming both increasingly sophisticated and increasingly accessible to criminals, costing organisations thousands of pounds and resulting in data loss and lengthy periods of disruption. Becoming Cyber Essentials compliant means that you have added peace of mind that you’re protected against these threats. In addition, many certification bodies offer Cyber Insurance as part of their certification package, meaning that you can mitigate the impact of a cyber attack in the event that it does occur.
Getting your Cyber Essentials certification also means that you can give your clients added peace of mind that you’re handling their data safely and securely. It’s a powerful marketing tool and a good way to boost your chance of getting new contracts – in fact, UK government departments will not even talk to potential contractors unless they have this certification!
How can Fintek help?
We have a deep understanding of information security. We have an ISO 27001 Information Security Management System Lead Implementer certified developer, and all of our developers have experience in developing secure, reliable systems. We can provide the following services:
- Consultancy on becoming Cyber Essentials certified
- Writing internal information security policies
- ISO 27001 consultancy, from advice to the full implementation of an information security management system
- Penetration testing, vulnerability analysis and security scanning
Please get in touch here to learn more.