Metryx adds Cyber Essentials to its InfoSec accreditations

What is assessed in Cyber Essentials Plus? the standards required for CyberEssentials accreditation.

Following on from the ISO27001 certification, we're extremely delighted that Metryx has now recived Cyber Essentials accreditation after external verification of the organisation's InfoSec approach and benchmark policies.

What is assessed in Cyber Essentials?

For the Cyber Essentials assessment, the questions are based around the five key controls

Key Control #1 – Boundary firewalls

Have you implemented a business grade firewall?
Have the passwords changed from the one it was supplied with?
Are all unnecessary ports closed down?

Key Control #2 – Secure configuration and network management

Are your software packages kept up to date with security fixes?
Do you have an account lockout policy, to mitigate against brute force attacks?
Is auto-run disabled for USBs/CD/DVDs?

Key Control #3 – User access control

Are all users forced to use secure passwords?
Are administrative accounts used for day to day internet browsing and email?
Do staff have the correct permissions to do the tasks they need?

Key Control #4 – Malware protection

How do you protect against malware on your network?
Do you use Anti-virus?
Is it kept up to date?
How often does it scan?
Does it scan web pages you visit?

Key Control #5 – Patch management

Are all systems still in support by a manufacturer who provides security updates?
Do all systems have security patches applied in a timely manner?

Who are Metryx?

Metryx are a data & analytics agency specialising in Automotive with a mission to help build connected, data-driven organisations in the sector. In addition to software products, Metryx are official partners for Microsoft, Tableau and Salesforce so offer support services to OEMs, dealers and industry partners across all of these product ecosystems.

Visit the main metryx website to find out more: www.metryx.co.uk

Back to Home page.