Cyber Essentials compliance applies to organizations of all sizes and sectors that aim to strengthen their cybersecurity measures and protect against common online threats. The scheme applies to businesses, non-profit organizations, and government entities in the United Kingdom and beyond.
On this page
- What is Cyber Essentials?
- Related Content
- Simplifying compliance management
- Here's how EventLog Analyzer simplifies adherence to Cyber Essentials compliance
- How does EventLog Analyzer meet Cyber Essentials requirements?
- What else does EventLog Analyzer offer?
- Frequently asked questions
What is Cyber Essentials?
The UK government developed Cyber Essentials, a cybersecurity certification program, to aid organizations in safeguarding themselves against cyberthreats and demonstrating their dedication to cybersecurity. The compliance protects organizations by ensuring secure configuration, controlling user access, preventing malware, managing security updates, and using firewalls to block cyberthreats.
It applies to organizations of all sizes and sectors that aim to strengthen their cybersecurity measures and protect against common online threats
Related Content
- Compliance hub
- What is security compliance?
- What is a compliance audit?
- Risks of regulatory non-compliance
- Compliance management software
- Cyber essentials
Simplifying compliance management
- Collect, correlate, analyse, and archive logs from across the network and simplify log management with a unified view of log data.
- Analyse logs in real time, and automatically trigger alerts and notifications when critical events occur to detect and respond to security events promptly.
- Generate detailed and accurate compliance reports to demonstrate conformity to Cyber Essentials during audits and assessments.
Here's how EventLog Analyzer simplifies adherence to Cyber Essentials compliance
Privileged user monitoring
Monitor the activities performed by users with elevated access privileges. By tracking and auditing the actions performed by privileged users, you can detect and respond to misuse of privileged accounts, reduce the risk of data breaches, and provide evidence of compliance with various regulatory standards, including Cyber Essentials requirements for privileged user monitoring and access control.
Account lockout monitoring
Monitor and capture account lockout events, which occur when a user's account is locked out after multiple failed login attempts. By tracking account lockouts and providing real-time alerts, EventLog Analyzer helps you to identify potential security threats like brute-force attacks, account compromise, denial of service (DoS), or unauthorized access attempts. This feature monitors user sessions and allows you to address account lockouts and helps you meet Section D.2 of Cyber Essentials requirements for account lockout and password policy management.
Vulnerability assessment and remediation
Identify and prioritise security vulnerabilities across your network with EventLog Analyzer's sophisticated vulnerability assessment capabilities. It can process log data from vulnerability scanners such as Nessus, Qualys, OpenVAS, and NMAP and deliver actionable reports to begin remediation efforts. The data from the vulnerability scanners can be fed into the correlation engine to discover complex attack patterns.
You can meet the Cyber Essentials patch management requirements of Section D.3 for vulnerability management and risk reduction. With EventLog Analyzer's comprehensive vulnerability assessment solution, organizations can reduce security risks and maintain a secure environment.
Incident response automation
Streamline incident handling processes, reduce response times, and ensure consistent and effective incident response practices with the incident response automation feature. This feature allows you to facilitate swift and coordinated responses to security incidents. It can raise a ticket to the concerned security teams in real time for quick analysis and action. EventLog Analyzer helps organizations meet the Cyber Essentials requirements of Section D.4 for user access control by automating your first response to any security incident with predefined workflows and automated response actions triggered by preset criteria.
How does EventLog Analyzer meet Cyber Essentials requirements?
| Cyber Essentials requirements | Requirement description | EventLog Analyzer reports |
|---|---|---|
| D.1 Boundary firewalls and internet gateways | Organizations should protect every device in scope with a correctly configured firewall (or network device with firewall functionality). |
|
| D.2 Secure Configuration | Proper configuration of computers and network devices should be carried out to minimize inherent vulnerabilities and ensure that only the services needed to carry out their designated tasks are available. |
|
| D.3 Patch Managaement | Maintain the latest security patches and updates on the software utilised on computers and network devices. |
|
| D.4 User access control | Authorized individuals should be the only ones assigned user accounts, especially those with special access privileges, like administrative accounts, and effective management should be implemented to prevent the misuse of such privileges. |
|
| D.5 Malware Protection | The use of malware protection software is necessary to safeguard computers in an organization that are connected to the internet, and it is essential to implement strong malware protection measures on these devices. |
|
What else does EventLog Analyzer offer?
Log collection and consolidation
Collect and consolidate log data from various sources, such as servers, applications, and network devices. This allows you to centralise your log data in a single platform, making it easier to search, analyse, and monitor logs for troubleshooting.
Threat intelligence
Identify and respond to emerging threats instantly with threat intelligence feeds that provide real-time information about known malicious entities, IP addresses, domains, and indicators of compromise (IOCs).
Cloud infrastructure monitoring
Monitor all AWS EC2 instances in real time, and detect suspicious activities with timely alerts, enhancing the network security of your system.
Log forensics and investigation
Investigate security event with EventLog Analyzer's powerful search, log correlation, and log visualisation capabilities. It allows security teams to reconstruct incidents, trace activities, and identify the root cause of security breaches or system failures.
Frequently asked questions
Cyber Essentials is not mandatory for businesses, but organizations that work with the UK government and organizations that bid for government contracts are required to be compliant with Cyber Essentials.