There is an abundance of technologies on the market that you will be assured are what you need to solve your problems. Are they really necessary, in the right place and effective. H2 will identify your threats, vulnerabilities and risks to enable you to target your spend where it will be most effective.
In order to achieve an Affordable solution, H2, having identified the threats, vulnerabilities and risks, will marry technical controls to process and procedures which define how sensitive transactions and information is handled. This ensures that H2 only identifies solutions which are Appropriate to solve the problem.
Increasingly businesses are being asked to demonstrate their commitment to Cyber Security and Risk Management by achieving a recognised security standard. There are several international standards that H2 can consult on, however, perhaps the most appropriate to an SME is Cyber Essentials. H2 itself is certified to Cyber Essentials and can help achieve certification for its clients with an Appropriate and Affordable solution.
Regardless of which type, implementing a control costs time and money. It is therefore important that whatever controls we implement are cost effective but more importantly, they need to be appropriate for two reasons; firstly they need to do the job of protecting the information effectively but secondly, they must do the job in the least intrusive way possible so as not to adversely impact the business in a way that costs more to achieve the same. So, controls must be affordable and appropriate.
In order to demonstrate competence to the regulators, information must also be “Accreditable”. This means that you are able to demonstrate, via independent audit and assessment, that the controls actually do the job of protecting information. There are a number of international standards, such as the ISO 27000 family of standards, which are designed to standardise the approach to information security in a way that allows an organisation to be recognised as one which takes the protection of its, and its clients, information seriously.
However, for an SME, these might seem over the top and unaffordable. Therefore, SMEs need something more appropriate to their needs. To that end the National Cyber Security Centre has devised the Cyber Essentials scheme which is aimed at SMEs and provides that appropriate level of assurance, at an affordable cost. H2 can advise on Cyber Essentials and introduce a certification body, at the right price.
If you would like to know more about our range of services here at H2 then please contact us today on 01733 602183 or 01780 678199 or complete our contact form.Click here to get started >
We originally engaged H2 to examine our liability under GDPR and devise risk managed policies and processes to ensure we met the requirements. Their Cyber Maturity Assessment is certainly and eye opener and H2s approach, unique in our experience of IT service companies, demonstrated clearly that we had some issues to overcome. They were patient in providing services at our own pace and at price points which we were happy with, and were comfortable working with our current IT provider, enhancing their services and products, and plugging gaps that they do not cover. I have no hesitation in recommending H2 to other companies who need such services.
H2 helped us through every step of the way ensuring are systems were robust and compliant, great job guys. JMR
We invited H2 to make a full assessment of our IT infrastructure and processes and we were very impressed with their overall methodology and approach to the project. We now feel that we have an secure environment and with ongoing support from H2 we couldn't be happier. TD
We thought GDPR could be a serious issue for our business but H2 came in and explained what we needed to do and how we can stay compliant wit the law. Bob was extremely helpful and kept everything simple and easy to understand.
We had a very complex requirement and H2 broke it down into its component parts and project managed the entire process, they now offer ongoing support and we would thoroughly recommend them to any prospective customer.