From 1 October 2014, Government will require all suppliers bidding for certain contracts which are assessed as higher risk to be Cyber Essentials certified. The suppliers and contracts affected are likely to be from the following sectors: IT managed or outsourced services, commercial services, financial services, legal services, HR services and business services. This will not be mandatory for suppliers through G-Cloud or the Digital Services Framework. Further guidance for suppliers will be issued later this year. (GOV.UK)
Regular readers of this blog will know that not only have we recently gained Cyber Essentials certification, we have also been mentoring clients through the process to enable a painless and swift certification. Whilst we don’t normally ‘sell’ via the blog, given the tight deadline and the apparent confusion around this Government requirement, we thought it would be a good idea to provide a link to our Cyber Essentials consulting in case readers need it. You may require a little you may require a lot or you may want to do most of it yourself and just want some reassurance from a consultant that your submission is right. If you have ISO27001 you will be well prepared, if you haven’t then you may well already have a lot of what you need but don’t yet realise it.
Don’t worry, just ask. http://www.advent-im.co.uk/cyber_essentials.aspx