IASME Cyber Assurance
The IASME Cyber Assurance standard, formally known as IASME Governance; a new, flexible, affordable and comprehensive cyber security standard.
The IASME Cyber Assurance standard was created to be both affordable and achievable compared to other international standards. The standard enables small businesses in a supply chain to demonstrate their degree of cyber protection at a reasonable expense, demonstrating that they are adequately protecting their customers’ data. The IASME Cyber Assured standard requires a Cyber Essentials certificate to be held throughout your IASME Cyber Assured certification, there are two levels to this assessment; Level1 Verified Assessment and Level2 Audited assessment which carries International recognition. The standard shows that there are a range of data protection and cyber security measures in place.
As with the Cyber Essentials accreditation there are two levels of this accreditation:
IASME Cyber Assurance- Level 1
IASME Cyber Assured is a risk-oriented standard and covers ensuring best practise in core areas of security such as:
- Incident management
- Personnel recruitment
- Planning and operations
- GDPR compliance
Level 1 is the first step in the IASME Cyber Assurance standard.
IASME Cyber Assurance – Level 2
This level of the standard requires an audit of your governance systems and operations, The audit is independent and conducted by a Certified body or assessor. IASME Cyber Assurance Level 2 requires you to have completed Level 1. Level 2 covers 13 themes across 4 areas of control
- Identify and Classify
- Detect and Deter
- Respond and Recover
The new standard has simplified the process whilst maintaining the approach to strong cyber security