Cyber Essentials

The Cyber Essentials Scheme has been developed by the UK Government to help businesses deal with the critical issue of cyber security. All organisations are potential targets for cyber criminals: cyber attackers use a range of sophisticated techniques to find known vulnerabilities in your software, hardware and applications, making your business and employees vulnerable to an attack.

Cyber Essentials provides a clear statement of the basic controls all organisations should implement to mitigate the risk from common internet based threats, within the context of the Government’s 10 Steps to Cyber Security.

From 1 October 2014, government requires all suppliers bidding for certain sensitive and personal information handling contracts to be certified against the Cyber Essentials scheme.

Cyber Essentials Compliance

Compliance to Cyber Essentials requires the completion of a questionnaire containing 47 controls. All of these controls need answering and many can be fulfilled by using the Sec-1 Ltd Cyber Essentials Installation and Configuration service in conjunction with a WatchGuard UTM Firewall Solution.

Boundary Firewalls and Internet Gateways

  • Do you have firewalls at all boundaries and gateways to your network?
  • Are your firewalls set to restrict inbound and outbound traffic to only authorised connections?
  • Are firewalls set to a default deny-all policy?

Secure Configuration

  • Are proxy servers used to provide controlled access to the Internet for relevant machines and users?
  • Are Internet access (for both web and mail) log files retained?

Access Control

  • Are users authenticated using suitably strong passwords, as a minimum, before being granted access to applications and computers?

Malware protection

  • Has anti-virus or malware protection software been configured to scan files automatically upon access (including when downloading and opening files, accessing files on removable storage media or a network folder) and scan web pages when accessed (via a web browser)?
  • Are users prevented from executing programs from areas of the disk to which they have write access?

Patch Management

  • Have all security patches for software running on computers and network devices that are connected to or capable of connecting to the Internet been installed within 14 days of release or automatically when they become available from vendors?
  • Do you perform regular vulnerability scans of your external network to identify possible problems and ensure they are addressed?

Further Reading

  • Read more

    WCry 2.0 (WannaCry, WanaCrypt0r) Ransomware

    WCRy Description On 12 May 2017, an extremely virulent ransomware variant named WCry 2.0 (also called WannaCry, WanaCrypt0r, and WannaCrypt) began to infect many victims across the world. Within several hours, over 75,000 victims were reported in 90+ countries, including hospitals in the UK and other countries. Initial analysis of the ransomware appears to show it [...]
  • Read more

    Software Release: Fireware 11.11.2 and WSM 11.11.2

    Fireware 11.11.2 and WSM 11.11.2 WatchGuard is pleased to announce the General Availability (GA) of Fireware 11.11.2 and WSM 11.11.2. These maintenance releases include many important bug fixes, and there are also some significant enhancements: Support for IKEv2 in Branch Office VPN provides more compatibility with third-party products and greater VPN reliability. New Firebox Certificate Portal so your users can easily [...]
  • Read more

    Software Release: Fireware 11.11.1 and WSM 11.11.1

    Fireware 11.11.1 and WSM 11.11.1 WatchGuard is pleased to announce the General Availability (GA) of Fireware 11.11.1 and WSM 11.11.1. These maintenance releases include many important bug fixes. Along with the maintenance updates, there are also some minor enhancements: New defaults for managed security templates (drag and drop VPN) to support latest cipher standards Updates [...]
  • Read more

    WatchGuard Recognized with a Trio of Awards

    WatchGuard Recognized with a Trio of Awards Tweet!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0],p=/^http:/.test(d.location)?'http':'https';if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src=p+'://platform.twitter.com/widgets.js';fjs.parentNode.insertBefore(js,fjs);}}(document, 'script', 'twitter-wjs'); The awards keep coming for WatchGuard with recent recognitions by CRN, SC Magazine, and IT Pro UK. Coletta Vigh, director of global channel programs, has been named to CRN's 2016 Power 100, an elite subset of the annual Women of the Channel list. CRN [...]
  • Read more

    Keeping Students safe online

    Schools and colleges deal with a unique set of information security challenges. Not least of which is the fact that there can be hundreds of new pupils requiring access to the school network each September. As the trend of BYOD in schools becomes ever more prevalent, the challenges have risen exponentially. It is now increasingly […]
  • Read more

    Securing ‘wagon wheel’ Networks

    Securing ‘wagon wheel’ networks Tweet!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0],p=/^http:/.test(d.location)?'http':'https';if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src=p+'://platform.twitter.com/widgets.js';fjs.parentNode.insertBefore(js,fjs);}}(document, 'script', 'twitter-wjs'); Like many others, I was glued to the cricket in South Africa over the Christmas break, and in particular Ben Stokes’ incredible first innings in Cape Town. Looking at his wagon wheel reminded me of a network map of a distributed enterprise I know, with one central [...]
  • UTM Gartner Magic Quadrant 2015

    Offering the industry's highest-performing, all-in-one network security platform with full-featured, fast security appliances that scale, WatchGuard is the only company of 13 to be positioned in the Visionaries quadrant.
    Read more
  • Read more

    Software Release Announcement: WatchGuard Fireware 11.10.2 and Dimension updates

    WatchGuard has released two important software updates this week to address issues that have been reported in the field. WatchGuard Fireware 11.10.2 Update 1 This update was posted to the software download site on Wednesday, Aug 10th. The two most significant issues addressed are: A kernel crash that occurred in v11.10.2 on models: XTM 5 Series, […]
  • Read more

    Software Release: WatchGuard Fireware 11.10.2 and WSM 11.10.2

    WatchGuard Fireware and WSM version 11.10.2 WatchGuard is pleased to announce the General Availability (GA) of WatchGuard Fireware 11.10.2 and WSM 11.10.2. What’s new in 11.10.2? Along with many bug fixes, the new maintenance release also includes: Support for Firebox M200 and M300 Application Control fixes to identify applications used over proxy policies Windows 10 verification […]
  • Read more

    French Connection choose WatchGuard Firewalls

    French Connection choose WatchGuard Success in High fashion depends heavily on  brand strength,  reputation, and a constant view on changing consumer needs and tastes. Consumer behaviour is also influenced by a public perception of how an organisation looks after their data and maintains good quality security. Target saw and are still feeling the effects of […]