What is the Cyber Essentials Pre-Assessment?
The Cyber Essentials Pre-Assessment is an evaluation of your current cyber security and will get you prepared for whatever the next step on your cyber security journey is.
How does it fit into my grant?
As part of each Digital Development Grant awarded, a Cyber Essentials Pre-Assessment is available to you for free. It is now being included courtesy of the Scottish Government in an effort to upskill Scottish organisations and prevent attacks on organisations who are receiving these grants. The Cyber Essentials Pre-Assessment will prove useful in spreading knowledge about cyber security essentials, and how you can improve on your organisation’s current security.
Who is involved?
Scottish Business Resilience Centre will be leading this part of the grant package and utilising their Trusted Partner network.
SBRC is a respected voice in business resilience, bringing together the Scottish Government, Police Scotland, Scottish Fire & Rescue Service, and the Scottish business community. The vision of SBRC is to become the catalyst that makes Scotland one of the safest and most resilient places to live, work, and do business, both on and offline.
This ‘Trusted Partners’ initiative, endorsed by our partners in Police Scotland, has developed into a network of independent companies focused on promoting continuous improvement in cyber resilience across all sectors in Scotland and supports the Scottish Government’s Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland.
The IASME Consortium is the National Cyber Security Centre (NCSC) industry partner responsible for the operational delivery of the Cyber Essentials scheme in the UK. It has trained a number of qualified cyber security companies (Certifying Bodies) who will be able to help you understand basic cyber assessment questions, how they relate to your company and what steps you need to take in order to protect your organisation.
SBRC has worked with Cyber Essentials Certifying Bodies based and operating in Scotland to support organisations, both small and large, to focus on cyber hygiene and achieve Cyber Essentials or Cyber Essentials Plus, the Government backed baseline standard accreditation in cyber security.
Do I have to do it?
Yes, you must complete it as part of your grant process. If you are receiving a DigitalBoost Development Grant, the expectation is that you will take this opportunity to benefit from this unique opportunity.
How much does it cost?
The fees for this service play a part in your grant so you will not incur any fees for it.
What do I need to do?
The first thing you need to do is follow the link issued to you by LESL. It will bring you to the SBRC website where you will be asked to submit some details around your organisation and who the point of contact will be for this assessment. Once received, SBRC will be in contact to introduce you to one of their Trusted Partners who will complete the assessment.
Will this be invasive into my organisations day-to-day operations?
No, absolutely not. The Trusted Partner will be sure to check through everything with you before they begin their assessment and ensure they do not get in the way of your day-to-day operations.
What are the benefits?
Cyber Essentials is the basic recommended cyber security accreditation the government recommends every organisation have. By going through the Cyber Essentials Pre-Assessment, we will prepare you for applying for this; analyze where you are strong, weak, and what you can work on to make your organisation secure. The Cyber Essentials Pre-Assessment will also be a knowledge sharing exercise where we will share some key tips to ensure a secure organisation including all the available options to you in case of emergency.
By the end of the Cyber Essentials Pre-Assessment, you will be aware of how secure your organisation is, and how to strengthen it.
What do I get at the end?
By the end of the assessment, you will receive a report detailing the strengths and weaknesses of your current cyber security systems, and areas you will need to put more work into to get ready if you are going to pursue the Cyber Essentials accreditation. You will also understand what resources are available for you to use, and any questions around cyber security will be answered.
How many parts are there to this?
There are two parts. The first and main part is the report making up the Cyber Essentials Pre-Assessment. The second part is a webinar session SBRC will run. This session will act as a signposting activity pointing out all the relevant cyber resources available to you, most especially the free resources available to you. At the end of the session, we will run a Q&A with some of our cyber experts to help you out on any cyber questions you may have.
So, tell me the full process from start to finish…
If you are successful in your grant application, you will receive an email from LESL informing you of your success. In this email it will mention details of the Cyber Essentials Pre-Assessment including a link to sign up your details to it. When you have submitted your details through this link (SBRC website) SBRC will then assign one of their Trusted Partners to you. SBRC will set up an introduction to your point of contact at this Trusted Partner. This contact will explain the procedure they will follow to carry out their assessment, and any further details they will need.
On completion, the Trusted Partner will pull together a report. This report will assess your current cyber security in relation to the recommendations as set out in the Cyber Essentials accreditation. What you do with this report will be up to you.
Finally, the Trusted Partner will also contact SBRC that the report is completed. SBRC will then invite all companies with completed reports to the signposting/Q&A session. Once you have attended this you will have completed the Cyber Essentials Pre-Assessment.
Where can I make further enquiries
Please direct enquiries to: [email protected]