Skip to content
Contact Us
UK Gov Backed Certification

Cyber Essentials

Ensuring the security of digital health systems through Cyber Essentials and Cyber Essentials Plus certification.
Contact Us
soter logo
huma logo
Doccla
669e7154f426a7915f267532_6102a503954507ca07061cca_JoyLogo-Jan-17-2025-01-09-47-1616-PM
icare logo
atsmed logo
IASME Cyber Essentials

Enhance your reputation and reduce the risk of common cyber threats

Cyber Essentials certification is a vital step in safeguarding your business against cyber threats. By implementing the necessary security controls, you can demonstrate your commitment to protecting sensitive data and ensuring the integrity of your systems.
Enhancing Reputation

Demonstrate to your customers, suppliers, and stakeholders that you take cyber security seriously.

Gain Advantage in Tendering

20% increase the chances of winning tenders.

Cyber Essentials and Cyber Essentials Plus

Our Process for Digital Health Organisations

  • Apply

    Once you've contacted us or completed our scoping form, we've now become partners.
    We'll send you a quote ASAP.

  • Onboard

    Once you've given the green light to the quote, we can onboard you to the IASME portal using the details in this form. This is where you’ll complete the Self-Assessment Questionnaire.

  • Complete

    Time to complete the self-assessment. You’ll be connected to our assessment team via our service desk for help along the way.

  • Submit

    Once complete, our team will provide a full review of the answers and feedback on un-compliant answers, working with you to provide bespoke solutions where needed. Once all the requirements are met you will be awarded certification.

     

FAQs

Find answers to commonly asked questions about Cyber Essentials and Cyber Essentials Plus for digital health companies.
What is Cyber Essentials?
Cyber Essentials is a government-backed certification scheme that helps organisations protect against common cyber threats. It focuses on five key areas of cybersecurity: firewalls, secure configuration, user access control, malware protection, and patch management.
Who needs Cyber Essentials?

Any organisation that wants to demonstrate its commitment to cybersecurity and protect against common cyber threats can benefit from obtaining Cyber Essentials certification. It is especially important for digital health companies that handle sensitive patient data.

What is Cyber Essentials Plus?

Cyber Essentials Plus is an advanced level of certification that includes a more rigorous assessment of an organisation's cybersecurity measures. It involves an independent testing of the organisations systems to ensure they meet the required security standards.

How can I get Cyber Essentials certification?

To obtain Cyber Essentials certification, you need to complete a self-assessment questionnaire and have your systems independently tested. You can then submit your application to a certification body for review and certification.

What are the benefits of Cyber Essentials?

Cyber Essentials certification can provide several benefits for digital health companies, including improved cybersecurity posture, enhanced customer trust, and a competitive advantage in the marketplace. It also helps organisations comply with data protection regulations.

What are the requirements for Cyber Essentials certification?

To obtain Cyber Essentials certification, organisations must meet the following requirements: have a properly configured firewall, use secure configurations for devices and software, restrict user access to systems and data, protect against malware, and keep software up to date with patches.

How long does Cyber Essentials certification last?

Cyber Essentials certification is valid for 12 months. After this period, organisations need to renew their certification to maintain their cybersecurity credentials and demonstrate ongoing commitment to protecting against cyber threats.

Can I get Cyber Essentials Plus without Cyber Essentials?

No, Cyber Essentials Plus is an advanced level of certification that builds upon the requirements of Cyber Essentials. To obtain Cyber Essentials Plus, organisations must first achieve Cyber Essentials certification and then undergo additional independent testing.

Is Cyber Essentials mandatory?

While Cyber Essentials certification is not mandatory for all organisations, it is highly recommended for digital health companies that handle sensitive patient data. It helps demonstrate a commitment to cybersecurity and can provide a competitive advantage in the industry.

IEC62304 Compliance

To meet IEC 62304 compliance, organizations must follow clear steps to manage the lifecycle of medical device software. This includes creating and maintaining plans for developing, testing, and maintaining the software to ensure it works safely and effectively. The software must be classified based on the level of risk it could pose to users, with stricter rules for higher-risk software. Teams must also identify and reduce any risks or problems with the software as it is being developed and after it is in use. Regular checks, testing, and updates are essential, and all work must be carefully documented to show how the software meets safety and quality standards.

"Partnering with Periculo has been a transformative experience for Joy. As a digital platform focused on enhancing preventative healthcare, safeguarding our clients' sensitive information is paramount. Periculo’s expertise was evident from the start. They meticulously developed a robust Information Security Management System (ISMS), ensuring we met ISO 27001 standards and remained audit-ready."

JoyLogo
Patrick Harding

CEO, Joy