Date of Certification: 21st March 2019
Certificate Number: IASME-A-010223
activereach has successfully certified against the UK Government’s Cyber Essentials scheme. Working with accreditation body IASME to achieve Cyber Essentials, the certification confirms activereach’s commitment to cyber security best practice and secures its position as a leading supplier of security solutions to the UK marketplace.
Developed by the UK Government as part of a broader initiative to raise cyber security awareness and protection in businesses of all sizes, Cyber Essentials provides a set of criteria against which organisations can measure the effectiveness of their cyber security systems. Achieving the certification demonstrates to customers that a business has taken basic and essential cyber security precautions.
Since 1 October 2014, Cyber Essentials became a minimum requirement for bidding for some government contracts that entail the handling of sensitive and personal data (https://www.gov.uk/government/publications/procurement-policy-note-0914-cyber-essentials-scheme-certification)
The IASME Consortium is one of the four Cyber Essentials accreditation bodies appointed by the UK Government. activereach has performed a self-assessment against the five most important security controls and the information we provided has been verified by Baigent’s, one of the IASME certification bodies.
For further information please see www.cyberstreetwise.com\cyberessentials
Membership Number: 1049728
activereach is a member of the Thames Valley Chamber of Commerce Group (Essential Membership)
activereach is a Core Member of the UK Cyber Security Forum.
Core Members are sole traders and SMEs (250 staff or less) actively working in cyber security. Members have capabilities in:
We learnt a huge amount as a result of doing the DDoS test simulation. It was better doing this in a controlled manner instead of waiting until we are hit for real. We now understand a lot more about our systems and our people have gained useful experience, which has only improved our readiness for a real attack.
We certainly see the real value of doing this on a regular basis in a similar way to testing our fire alarm system so that people and systems operate under real scenarios efficiently.
Misconfiguration is the greatest threat to data hosted in the public cloud, followed by loss and abuse of credentials, and insecure interfaces.
Source: IBM X-Force Threat Intelligence Index 2019
Solution: Security teams can benefit from using activereach's cloud firewall management services to have visibility of cloud assets on AWS, Azure, of Google's cloud services without the need for agent software. Servers can be forced to adopt default secure configurations, and be subject to audit against common regulatory frameworks like PCI DSS.