IASME Governance Audited
Looking for an affordable alternative to ISO 27001?
Introducing IASME's highest level of certification.
Have you got the time, resources and funds to achieve ISO 27001 every year?
This is what the National Cyber Security Centre (NCSC) and IASME asked businesses around the UK.
What response did they receive from these businesses?
A resounding and collective no.
So, what did the NCSC and IASME decide to do?
Together, they developed ‘IASME Governance Audited‘ to give UK businesses the opportunity to secure themselves against a standard which confidently maps against the ISO 27001 standard.
Why Achieve IASME Governance Audited?
Two Certifications. One Process.
When you decide to align to the IASME Governance standard, you will also be receiving a Cyber Essentials Plus certification in the process.
This means you’ll be covering the 5 technical controls within the Cyber Essentials Scheme as well as successfully managing your risk.
IASME Governance also includes a GDPR Compliance assessment which means you can align to the GDPR at no extra cost.
Why Choose Cyber Tec Security?
You’ll first need to achieve the IASME Governance Self-assessed to be able to achieve IASME Governance Audited.
We’ll discuss the scope of the assessment and carry out an audit of your policies and process.
Once you’ve passed, we’ll quickly send over all collateral including your certificates and logos.
Ready to achieve IASME Governance Audited?
IASME Governance Audited Features
Unlock Access To:
Frequently Asked Questions
The Cyber Essentials Scheme is a Government scheme that helps organisations to guard against the most common cyber threats from the internet and demonstrate commitment to cyber security. It covers five main technical controls which will protect companies against an estimated 80% of common internet threats. The controls are:
- Secure your Internet connection (Firewalls and routers)
- Secure your devices and software (Secure configuration)
- Control access to your data and services (Access control)
- Protect from viruses and other malware (Malware protection)
- Keep your devices and software up to date (Software updates)
IASME Governance certification is aligned to the Government’s Ten Steps to Cyber Security and includes Cyber Essentials certification as well as controls around people and processes. It also covers the General Data Protection Regulation (GDPR) requirements. IASME Governance is aligned to a similar set of controls to ISO 27001 but is more affordable and achievable for small and medium sized organisations to implement.
No – Cyber Essentials Plus is an audited level of the Cyber Essentials assessment, testing the 5 Cyber Essentials controls only. IASME Governance Audited (sometimes known as IASME Gold) is an independent on-site audit of the level of information security provided by your organisation, against the IASME Governance standard. It is aligned to a similar set of controls to ISO 27001 but is more affordable and achievable for small and medium sized organisations to implement. The standard includes GDPR requirements and adds additional topics that mostly relate to people and processes, for example:
- Risk assessment and management
- Training and managing people
- Change management
- Incident response and business continuity
When I apply to do Cyber Essentials and IASME Governance together, can I do IASME Governance at a later date?
We would normally require the Cyber Essentials and IASME Governance to be assessed at the same time, but they can be done separately provided that the IASME Governance is completed within 6 months of the Cyber Essentials certification.