IASME Cyber Assurance Surrey
IASME Cyber Assurance Certification
Most firms appreciate the importance of defending against cyber attacks. However they often spend money on security software and systems without first really understanding their risk, which means investment in security tools can be wasted and the weakest link in any cyber event – your people – does not get addressed.
The most common cyber assurance schemes are ISO 27001 or the UK equivalent, which is far more affordable to SMEs, IASME Cyber Assurance. The IASME Cyber Assurance standard was developed through a UK government-funded project to create a cyber security standard which would be an affordable and achievable alternative to other international standards.
Why do you need IASME Cyber Assurance Certification?
In a world where cybercrime is escalating out of control, it is now the biggest single threat to most businesses. If you do not understand your risk, don’t have plans in place to reduce it and can’t respond quickly when you have an attack, a cyber incident could put you out of business.
- Are you able to demonstrate to your clients, investors and partners that you are really protecting your business from cybercrime?
- Do you and your staff know exactly what to do if you have a cyber attack or lose critical business systems?
- Do you get challenged by clients to demonstrate your cybersecurity credentials?
- Do you operate in a regulated sector?
If yes, you should have your cybersecurity risk assessments, policies, response plans and business continuity plans in place and up to date.
Our Packages
IASME Cyber Assurance Level 1
- A self-certification assisted by Pro Drive IT.
- We work with you to review your existing cyber security controls, policies and procedures and produce a gap analysis.
- We provide you with templates for all the policies and procedures you need to put in place.
- Requires a Cyber Essentials certificate to complete certification.
- You receive a report on areas of non-compliance and recommendations on how to address them. Once you have implemented the changes, we help you complete the questionnaire**, which is submitted online.
- Subject to compliance, you receive an IASME Cyber Assurance Level 1 certificate.
IASME Cyber Assurance Level 2
- An assessed version of the IASME Cyber Assurance certification.
- An assessor will visit your site to audit your existing cyber security controls, policies and procedures and interview staff.
- Opportunity to address any non-compliances.
- Requires an IASME Cyber Assurance Level 1 certificate before commencing.
- The audited certification is renewed at the end of years 1 and 2 by renewing the online IASME Cyber Assurance level 1 certification.
- Subject to compliance, you will receive an IASME Cyber Assurance Level 2 certificate.
ISO 27001
- Internationally recognised standard for information security management.
- Ongoing support provided to your staff to help you achieve certification.
- Documented audit programme, plans & reports.
- Access to ISO training portal.
- Service designed to help you achieve and maintain the ISO 27001 certification.
* There may be some additional fees if technical auditing is required
** Any remedial work undertaken by Pro Drive IT will be subject to additional fees
Requirements
The IASME Cyber Assurance standard requires a range of core controls to collectively ensure a comprehensive approach to managing cyber security risks. These include technical measures like access control and malware protection, administrative policies and procedures such as risk management and incident response planning, and physical security controls to protect hardware and data.
IASME vs. ISO 27001
IASME Cyber Assurance Level 1
Scope
IASME Level 1 covers core cyber security policies, procedures, and technical controls through a self-assessment.
Complexity
IASME Level 1 has low complexity, with guided support and no external audit.
Organisation Size
IASME Level 1 is designed for small to medium-sized organisations starting their cyber security journey.
Benefits
IASME Level 1 is a cost-effective way to demonstrate cyber security commitment and meet basic assurance requirements.
IASME Cyber Assurance Level 2
Scope
IASME Level 2 builds on Level 1 with an in-depth, externally audited assessment of controls and staff awareness.
Complexity
IASME Level 2 has moderate complexity, including an onsite audit and the opportunity to resolve non-compliances.
Organisation Size
IASME Level 2 is suitable for SMEs needing greater assurance or working in regulated sectors.
Benefits
IASME Level 2 is highly credibility and offers great assurance to clients, partners, and regulators.
ISO 27001
Scope
ISO 27001 covers a full information security management system, including governance, risk, and compliance controls.
Complexity
ISO 27001 has high complexity, involving extensive documentation, audits, and ongoing management.
Organisation Size
ISO 27001 is ideal for larger organisations or those with complex security and compliance needs.
Benefits
ISO 27001 is an internationally recognised certification that enhances reputation and is often required in tenders and contracts.
Why Choose Pro Drive IT?
Pro Drive IT provides outsourced business IT support in Surrey and offers IT strategy and cyber security services for SMEs all over the country. We work in the legal, accountancy, and financial services sectors and understand the demand for uncompromising security in each of these fields.
Pro Drive’s commitment to you is to enable your company to be successful and do better business by using technology. We work hard to understand your business, what makes it work, and your plans for the future by working closely with you to develop a technology roadmap, aligned to your business needs.
Our engineering team will help make this a reality, ensuring everything works as it should. Our services team will keep your systems up and running whilst dealing with any problems, changes, or queries along the way, all in a language you understand.
Reach out to us today to learn how Pro Drive IT can upgrade your business’ technology solutions and revolutionise your workflow and productivity.
