Is your business GDPR and Cyber Essentials compliant?

What we do

SMEs are prime targets for cybercrime as they often do not have in house security teams to protect their devices and equipment, so the government has taken steps to ensure UK business is protected. Get your small/medium business ready NOW with our easy to use self-assessment and audited certification services.

In 2017 there were 978 million global victims of cyber crime, of which 17 million were Britons targeted by Phishing, Ransomware, Online Fraud and Hacking. It is estimated the cost to UK was £130 billion. (Yorkshire and Humber Regional Cyber Crime Unit – July 2018). In addition, there were an increased number of attacks against UK businesses via connected devices such as CCTV and Automated Control Systems.

Cyber Essentials is a government-backed cyber security certification scheme that sets out a good baseline of cyber security suitable for all organisations in all sectors. The scheme addresses 5 key controls that, when implemented correctly, can prevent around 80% of cyber attacks, and will also help you to address compliance requirements such as GDPR.

The IASME Governance scheme is designed to ensure that businesses work in a safe manner regarding personal data as well as being compliant with the General data protection regulation (GDPR) through the use of good practices and technical controls that can be implemented into any company to both minimize the risk of an attack and reduce the damage caused by such an event.

Ioetec are a Cyber Essentials Certification Body and an IASME Governance Assessor, call us now to see how we can help you protect yourself against cyber crime.

Doing nothing is not an option – The time to act is NOW

Our Services

The Cyber Essentials Scheme is a government backed initiative set up to help organisations and businesses be safer online. By implementing a number of procedural and technical controls within your company you can defend against some of the most common internet threats, such as; malware, ransomware and harmful phishing Emails. Cyber Essentials allows you to secure your connection to the internet, secure your devices and software, control who has access to what data, protect from viruses and keep your devices and software up to date.

Becoming Cyber Essentials certified is the first step to becoming GDPR compliant, and gives your customers, investors and shareholders piece of mind that you have taken steps to becoming secure. Cyber Essentials is now a requirement for gaining government contracts and contracts with many large corporations.

 

For small and medium companies, the IASME Governance standard was developed over several years during a government funded project to create a cyber security standard which would be an affordable and achievable alternative to the international standard, ISO27001.

The IASME Governance standard allows the small companies in a supply chain to demonstrate their level of cyber security for a realistic cost and indicates that they are taking good steps to properly protect their customer’s information.

The IASME Governance assessment includes a Cyber Essentials assessment and GDPR requirements and is available either as a self-assessment or on-site audit.

The General Data Protection Regulation

The General Data Protection Regulation is a new EU Regulation that replaces the now much older ‘1995 data protection regulation’. GDPR requires organisations to do more than simply tick boxes as companies are required to actively incorporate cyber security measures, good practice techniques and overall demonstrate high level of data protection. This includes formal procedures regarding who has access to what data, whether risk assessments are carried out, as well as demonstrating that the rights of individuals are not infringed through the use of freely given consent and clear and simple English on official documents. This regulation is designed to protect people’s data and breaches can result in hefty fines (up to 4% of gross turnover or 4 million Euros whichever is the greater).  The Information Commissioners Office has made it clear that they will enforce GDPR to ensure companies act to project data.

Getting Started

Self Assessment – £300 (+VAT) for Cyber essentials or £400 (+VAT) for IASME Governance

Step 1: Contact us by phone (0114 386 3533) or Email cyber@ioetec.com
Step 2: We will explain your options and what you need to do next
Step 3: Choose the service you require (Cyber Essentials or IASME Governance including Cyber Essentials and GDPR)
Step 4: Schedule a one-hour call to discuss the questionnaire and answer any queries
Step 5: Access our portal to complete the self-assessment questionnaire on-line
Step 6: Submit the completed questionnaire for checking
Step 7: We will check your responses and award either a PASS or a FAIL
Step 8: If you FAIL then we will send a set of recommendations and you will have 48 hours to update your questionnaire and resubmit
Step 9: If you PASS then we will issue your certificate

If you need more assistance by telephone – Starts at £200 (+VAT)

Step 1: Contact us by phone (0114 386 3533) or Email cyber@ioetec.com
Step 2: Agree fee
Step 3: We provide document templates
Step 4: Schedule a two-hour call to discuss and answer any questions
Step 5: Customer continues with Self-Assessment
Step 6: Certificate is not issued until Invoice is paid

If you need more assistance with a site Visit – Starts at £750 (+Expenses & VAT)

Step 1: Contact us by phone (0114 386 3533) or Email cyber@ioetec.com
Step 2: Agree fee
Step 3: We provide document templates
Step 4: Schedule a one day site visit to interview staff and prepare documents
Step 5: Responses submitted on behalf of customer
Step 6: Certificate is not issued until Invoice is paid

Audit: – Starts at £1500 (+Expenses & VAT)

Step 1: Contact us by phone (0114 386 3533) or Email cyber@ioetec.com
Step 2: Complete self-assessment
Step 3: Agree fee
Step 4: One day site visit to interview staff and observe procedures
Step 5: Prepare Audit report
Step 6: Act on any recommendations or non-compliance issues
Step 7: We submit the report to IASME
Step 8: Accreditation is not issued until Invoice is paid

Apply for an Assessment

Cyber EssentialsIASME Governance (Including GDPR)

Please refer to our Privacy Policy at https://www.ioetec.com/assessment-privacy/ for details of how your details will be used and how to request changes or deletion to your personal information.