Cyber Assurance

The IASME Cyber Assurance standard is a comprehensive, flexible, and affordable cyber security standard. It provides assurance that an organisation has put into place a range of important cyber security, privacy, and data protection measures.

LANDR’s consultancy service assists your organisation to attain the IASME Cyber Assurance certification with a choice of two service channels.

What Is The Cyber Assurance ?

IASME Cyber Assurance is a risk based cyber security standard comprising of controls which are divided into thirteen themes. Your organisation needs to meet the requirements of all the themes in order to achieve certification against the standard.

Why Do I Need Cyber Assurance ?

The Cyber Assurance certification offers a comprehensive, risk-based framework for organisations to demonstrate their cyber security and compete for business. It is designed to be affordable and achievable for organisations of all sizes and sits as an alternative to ISO 27001.

How Do We Get Certified ?

Getting started is quick and simple with LANDR Security.

We offer two channels to help businesses get on track and gain the Cyber Assurance framework.

What Is Covered In The Cyber Assurance Certification ?

The Cyber Assurance framework addresses 13 core disciplines discussed below:

Assets

Having a good understanding of your key information assets is essential in order to know what you need to protect.

Risk Assessment

In order to effectively apply the correct controls to protect your business assets, it is important to understand what the risks are to your business and to manage those risks to keep them at an acceptable level to you, your customers, and supply chain.

Training People

Thorough and consistent measures are required to screen and train all staff to enable them to understand and comply with the security responsibilities of their job.

Planning information Security

It is important to include information security considerations within your planning. You must also consider security when planning projects, procurement, contracting, suppliers, and when dealing with partners, and other interested parties.

Managing Access

Give users access to all the resources and data necessary for their roles, but no more. This applies to data stored on computer equipment as well as to physical locations.

Backup and Restore

Regularly backing up information, and having the ability to restore the backup, may be one of the most effective methods of protecting your business from the effects of accidental or malicious tampering.

Legal and Regulatory Framework

Be aware of legal obligations, contractural requirements and agreements and ensure you are fulfilling your responsibilities.

Organisation

A clear structure within your organisation is the foundation for effective and successful security. This should include who is responsible for making information safe and who is accountable when incidents happen.

Physical and Environmental Protection

Protect your information assets from physical threats such as theft or loss and environmental harm such as damage from temperature or humidity.

Policies and Procedures

Policies specify the rules, guidelines, and regulations that you require people to follow. They also reflect the values and ethics that are at the heart of your business.

Technical Intrusion

It is important to develop capabilities to monitor and respond to unauthorised access and usage. This includes anti-malware solutions and measures to prevent insider threats.

Monitoring, Review and Change Management

Creating processes to track and monitor information systems is important in order to detect threats and take steps to analyse and act on this information.

Resilience

A resilient company is one that is able to respond to an incident, keep operating through it, and eventually recover.

LANDR offers two service channels for companies to pursue certification to IASME Cyber Assurance:

Cyber Assurance Serviced

With Cyber Assurance Serviced, LANDR Security takes your business from Zero to Certified. Our consultancy team will work with you to understand your current security posture and how well prepared you are for the Cyber Assurance Assessment.

From here, we work alongside your teams and managed service providers to get all elements of your company in shape, meeting all the requirements to pass the Cyber Assurance Assessment for your organisations businesses and subsidiaries.

Cyber Assurance Direct & Renewals

If your business is ready for the Cyber Assurance Assessment or if you are just looking to renew your existing certification, LANDR will take you through the assessment process directly and quickly.