Cyber Essentials
Simplify Cyber Essentials Compliance – Protect, Manage, and Secure Every Endpoint with NinjaOne.
What is the difference between Cyber Essentials and Cyber Essentials+
Cyber Essentials is a self-assessed certification that provides foundational security measures to protect against common cyber threats. It consists of five technical control themes: firewalls, secure configuration, security update management, user access control, and malware protection.
Cyber Essentials+ encompasses all Cyber Essentials requirements but with independent verification through technical security testing including external pen testing and dark web audits. It is designed to provide greater assurance that security controls are effectively implemented.
Scope overview
Cyber Essentials certification applies to an organization’s entire IT infrastructure or a defined, separately managed subset. End-user devices cannot be excluded, and all in-scope systems must be secured against cyber threats. The scope must include all internet-facing devices and software, covering business units, networks, and locations, and must be pre-agreed upon with the certification body. A comprehensive scope maximizes protection and builds customer trust.
How does NinjaOne support organizations to meet Cyber Essentials requirements by technical control theme?
1. Firewalls
The aim of firewalls is to make sure that only secure and necessary network services can be accessed from the internet.
How does NinjaOne help?
NinjaOne network monitoring alerts administrators of anomalies and disabled firewalls. Additionally, NinjaOne’s comprehensive automation library provides ready-to-use script templates to audit firewall profiles, status, configure exceptions, and enable or disable Windows Firewalls with ease.
2. Secure configuration
The aim of secure configurations is to ensure that computers and network devices are properly configured to reduce vulnerabilities and provide only the services required to fulfill their role.
How does NinjaOne help?
NinjaOne comes equipped with security-focused scripts that can detect disabled BitLocker profiles and securely store recovery keys. These scripts also identify outdated protocols, such as SMB v1 or weak TLS versions, ensuring your systems stay secure and up to date. Other useful NinjaOne automations include the removal of unnecessary user accounts, removal of unwanted software, or lock devices after too many failed logon attempts.
3. Security update management
The aim of security update management is to ensure that devices and software are not vulnerable to known security issues for which fixes are available.
How does NinjaOne help?
Update Management is available for Windows, Mac, and Linux operating systems as well as for iPadOS and iPadOS for mobile devices. With NinjaOne you can patch over 6,000 third-party applications with ease. It can enforce the deployment of critical updates within a timeline of two weeks as required by Cyber Essentials. NinjaOne can also proactively alert when risk scores (CVSS) exceed a pre-defined threshold.
4. User access control
The aim of user access control is to ensure that user accounts are assigned to authorized individuals only and provide access to only those applications, computers and networks the user needs to carry out their role.
How does NinjaOne help?
NinjaOne enforces multi-factor authentication (MFA) across its entire platform, covering administrators, technicians, and end users. Its integration with Microsoft SCIM ensures seamless synchronization with Active Directory, simplifying identity management and enhancing security. NinjaOne can also execute scripts to remove old user profiles and rotate admin passwords.
5. Malware protection
The aim of malware protection is to restrict execution of known malware and untrusted software from causing damage or accessing data.
How does NinjaOne help?
NinjaOne also actively monitors endpoints to ensure AV protection and/or endpoint detection and response (EDR) is installed, operational, and always up to date. NinjaOne is integrated with leading EPP and EDR solutions such as SentinelOne, Crowdstrike, and Bitdefender Gravity Zone.
Ready to simplify the hardest parts of IT?