- Security TWENTY
- Women in Security Awards
PHS Group, the workplace services contractor, whose divisions include Datashred, has gained top level certification under the Cyber Essentials Scheme.
The certification forms part of a government-backed, industry supported scheme to help organisations protect themselves against common cyber attacks.
Janet Evans, IT Governance Manager at PHS Group, said: “As stories of organisations exposing customers’ information to cyber threats continue to create headlines in the media, it is becoming increasingly important for PHS to not only maintain a robust cyber security stance, but to also demonstrate this to our customers.
“By achieving Cyber Essentials Plus, PHS Group has been given the top level certification under the Cyber Essentials Scheme. This demonstrates that the company has taken the necessary precautions to mitigate internet security risks, and also enables PHS, and its customers and partners, to have greater confidence in our ability to reduce the risk posed by threat actors.”
Cyber Essentials covers five key controls:
1. Boundary firewalls and internet gateways – these are devices designed to prevent unauthorised access to or from private networks, but good setup of these devices either in hardware or software form is important for them to be fully effective.
2. Secure configuration – ensuring that systems are configured in the most secure way for the needs of the organisation.
3. Access control – Ensuring only those who should have access to systems are given access and at the appropriate level.
4. Malware protection – ensuring that virus and malware protection is installed and is it up to date.
5. Patch management – ensuring the latest supported version of applications is used and all the necessary patches supplied by the vendor been applied.
PHS Group adds that it’s also working towards ISO 27001 certification in 2015, the information security management standard. Visit http://www.phs.co.uk/.