Cyber Essentials is a fantastic way to start your business on its cyber security journey. However, it is also missing some key factors that are not included within the Cyber Essentials framework.
Cyber Essentials is just that, the essentials. It covers only the bare minimum that your business should have in place to protect from cyber-attacks. If your business passes the Cyber Essentials testing, that does not mean that your company is sufficiently protected from hackers. You should be doing a lot more to keep your data safe.
Although Cyber Essentials is a positive scheme, we believe a few things should be included in the framework as they are also ‘essential’. such as:
- Backup and Recovery
- Two-Factor Authentication
- Cyber Awareness Training
- Email Security