dfm covers
 
 

Investigating Cyber Essentials and Cyber Essentials Plus

Written by DFM Team

Investigating Cyber Essentials and Cyber Essentials Plus  

Many standards and frameworks exist to assist organisations in implementing security management systems. Examples are International Organisation for Standardisation (ISO) ISO/IEC 27001, the National Institute of Science & Technology (NIST) Cybersecurity Framework and the Centre for Internet Security (CIS) Controls. However, organisations at the smaller end of the size and complexity spectrum are looking for a considerably more straightforward approach to implement and demonstrate to other organisations and their customers that they are taking security seriously. In 2014, the UK's National Cyber Security Centre (NCSC) launched the Cyber Essentials certification scheme. The scheme is primarily aimed at small and medium-sized enterprises (SMEs) and encourages them to follow straightforward steps to implement foundational baseline security controls to mitigate the risk from web-based attacks.

Find out more subscribe to DFM today   and read the full article. Or if you're a subscriber, login and  read the article online .


 
 

Submit an Article

Call for Articles

We are keen to publish new articles from all aspects of digital forensics. Click to contact us with your completed article or article ideas.

Featured Book

Learning iOS Forensics

A practical hands-on guide to acquire and analyse iOS devices with the latest forensic techniques and tools.

Meet the Authors

Andrew Harbison

Andrew Harbison is a Director and IT Forensics Lead at Grant Thornton

 

Coming up in the Next issue of Digital Forensics Magazine

Solving the Security Challenges with a Human Firewall

The Next Generation Human Firewall, defined as a dispersed workforce, fully trained and ready to act on security threats with the right tools at their disposal needs to meet the needs of a securely distributed, flexible, integrated modern workforce.  Read More

Preparing for PCI DSS v4.0

A new version of the PCI DSS (payment card industry data security standards)is set to be released in Q1 2022, with full compliance needing to be reached by Q1 2024, this article looks at the changes and the new requirements. Read More

Subscribe today





Time - Quantum & Atomic Clocks

The article will explore the background and concepts involved in both quantum and atomic clocks and look at the importance of time to a digital investigation and how this might be impacted with the use of quantum timing along with the potential for malicious exploitation.Read More

Every Issue

News, 360, IRQ, Legal

Click here to read more about the future issues