Your Cyber Essentials Readiness Report

72%

Good progress, but improvements needed

Assessment Date: October 24, 2023

Category Breakdown

Firewalls and Internet GatewaysGreen

Score: 90% - Robust protection in place.

Secure ConfigurationAmber

Score: 65% - Some default settings remain.

User Access ControlRed

Score: 40% - Administrative privileges over-assigned.

Malware ProtectionGreen

Score: 85% - Effective endpoint protection active.

Patch ManagementAmber

Score: 55% - Critical updates pending on 30% of devices.

Security Update ManagementRed

Score: 30% - Legacy systems lack vendor support.

Key Gaps Identified

HighArea: User Access Control
Issue: Multi-Factor Authentication (MFA) missing on cloud services.

Impact: Unauthorized access to corporate data via compromised credentials. Without MFA, a single password breach grants full access to your cloud environment.

MediumArea: Patch Management
Issue: No automated patching for 3rd party applications.

Impact: Vulnerabilities in software like browsers or PDF readers can be exploited. Manual patching leads to delays and inconsistent coverage across the fleet.

LowArea: Secure Configuration
Issue: Lack of formal password policy documentation.

Impact: Inconsistency in security standards. While technical controls may exist, a lack of documentation creates risks during audits and employee onboarding.

Personalised Action Plan

Immediate (0-30 days)

Priority: CriticalEffort: Low

Action: Enforce MFA for all administrative accounts and remote access portals.

Business Benefit: Reduces risk of account takeover by 99%.

Short-term (1-3 months)

Priority: HighEffort: Medium

Action: Conduct a full audit of user privileges and remove "Always-on" admin rights.

Business Benefit: Limits lateral movement during a breach.

Medium-term (3-6 months)

Priority: MediumEffort: High

Action: Phase out legacy hardware that no longer receives security updates.

Business Benefit: Ensures long-term compliance and operational stability.

Ready to Achieve Certification?

Our experts will guide you through the certification process, helping you close gaps and secure your digital assets with Quarm Solutions' proven methodology.

Cyber Security Interface

Download Your Full Report

Enter your business email to receive the comprehensive 24-page readiness breakdown.

Certification FAQ

What are the next steps after this report?

The next step is to book a consultation with our experts to review these results in detail. We will help you prioritize the remediation actions and prepare your official application.

How long does the certification process take?

Typically, organizations can achieve certification within 2-4 weeks once the identified gaps are remediated. The timeframe depends on the complexity of your infrastructure.

What is the cost of Cyber Essentials certification?

Certification costs vary based on organization size and the level of support required. Our consultation will provide a fixed-price quote tailored to your needs.

What support options are available for remediation?

Quarm Solutions offers full hands-on support, including technical configuration, policy writing, and staff training to ensure you meet all certification requirements.

Don't Delay Your Certification

Limited certification slots available for this quarter. Secure your organization today.