North West based QG Management Standards has become the third company to be announced as an accreditation body for the governments flagship Cyber Essentials scheme.
The scheme, launched in June 2014 allows organisations to demonstrate that they have taken measures to help defend against common internet based attacks. There are two levels of assessment, Cyber Essentials which is verified self-assessment and Cyber Essentials Plus which involves external vulnerability testing.
The scheme is expected to be adopted by a large number of companies across the UK.
Brian Lightowler, QG Management Standards managing director, said: "We are delighted that we have been selected to work alongside CREST and IASME in the delivery of the Cyber Essentials Scheme.”
QG has been accrediting business since 1994 with its award winning Quality Guild brand incorporated quality, environmental and health and safety standards for SMEs, three years ago QG developed an Information security management standard for SME’s.
Brian added: “ QG has a vast amount of experience in managing the certification process for SME’s in a number of sectors, Our philosophy is to identify supply chains where trust , reliability and traceability are key, promote the benefits through the supply chain, then deliver the standards to the benefit of all. We believe that the Cyber Essentials scheme adds significant value to our model and vice versa.”
The first certification body to be approved by QG Management Standards is also a North West based company, Indelible Data. The information security company based on Britain’s Energy Coast has already been instrumental in helping companies safeguard their data.
Tony Wilson, managing director of Indelible Data said: "It's an opportunity for businesses of all sizes to demonstrate to clients that protecting data is being taken seriously. It will give them a competitive edge. Protecting data is more important than ever and failure to do so could ruin reputations and wreck businesses."
From 1 October 2014, government will require all suppliers bidding for certain personal and sensitive information-handling contracts to be Cyber Essentials certified. This will ensure information the government handles is protected.
Rob Orr, the Nuclear Decommissioning Authority’s lead for cyber security and information assurance, said: “NDA is placing greater emphasis on, and assurance of, basic cyber hygiene from our supply chain and delivery partners.”
Mr Orr added: "The Cyber Essentials scheme provides a firm foundation for even the smallest of businesses to be able to demonstrate that they can be trusted partners.”
Businesses including Burnetts Solicitors, Safety Critical, CUEDOC Occupational Health and Lakeland Capabilities will be among the first in the North of England to adopt the scheme.
Nationally, companies such as Vodaphone UK, Barclays Digital Banking and the Institute of Chartered Accountants in England and Wales have already committed to Cyber Essentials.
Tom Leach, managing partner (operations) of Burnetts said: "We have already been involved in tender processes where being able to demonstrate data security was part of the qualification process. In the future, I expect certification will become increasingly important to our clients and we are keen to show that the security of their data is a priority for us.”