The Danzell question set comes into effect on 27 April 2026, alongside an updated Cyber Essentials Plus test specification. This blog explains how assessors will more strictly verify update management compliance in Cyber Essentials Plus assessments using the Danzell question set. IASME has identified cases where organisations apply selective updates during assessments. To address this, […]
Category: Uncategorized
In today’s digital-first education world, cyber threats are more real than ever. Schools, colleges, and universities depend heavily on technology — from managing admin systems to delivering online learning. But with this reliance comes risk. Educational institutions hold vast amounts of sensitive data about students, staff, and finances, making them a prime target for cybercriminals. […]
Cyber Essentials Plus: How Assessors Verify your Scope When organisations prepare for a Cyber Essentials Plus (CE+) assessment, most attention naturally focuses on patching, endpoint protection, and firewall configurations. Yet one of the first and most decisive topics an assessor will examine is something far more foundational: scope. Before any technical testing begins, the assessor […]
We wanted to provide a bit of clarification around web browser support and how this is assessed as part of a Cyber Essentials submission. Browser support cycles When a software vendor states that only the current major release, or the current plus the immediately previous release, is supported for security updates and vulnerability fixes, any browser versions older than this are considered unsupported software. If unsupported browser versions are […]
Preparing for the End of Windows 10 Support in October As Microsoft phases out support for Windows 10 in October, users and businesses worldwide face an essential decision: how to transition smoothly to an updated system without disrupting operations or security. Here’s an updated guide to help you navigate this change: Understand What End of […]
A Hitch-Hacker’s Guide to the Galaxy – Developing a Cyber Security Roadmap for Executive Leaders In this blog series, I am looking at steps that your organisation can take to build a roadmap for navigating the complex world of cyber security and improving your cyber security posture. There’s plenty of technical advice out there for […]
Cyber Awareness Month 2024 Enhancing Cybersecurity in the Education Sector Improving cybersecurity in the education sector requires a multifaceted approach, as colleges and universities often handle sensitive student, staff, and research data, making them prime targets for cyberattacks. Below are some key strategies for enhancing cybersecurity in this sector: Implement Robust Security Policies Policies […]
Cyber Security Awareness Month 2024 Emerging Cybersecurity Threats in Education The education sector is increasingly becoming a prime target for cybercriminals, with colleges and universities facing a surge in sophisticated attacks. As these institutions continue to expand their digital footprints through remote learning, online collaboration, and data-driven research, they are confronted with emerging cybersecurity threats […]
Cyber Security Awareness Month 2024 Common Cybersecurity Myths Debunked: Separating Fact from Fiction In the ever-evolving world of technology, cybersecurity is more important than ever. Yet, despite growing awareness of cyber threats, several myths and misconceptions persist that can leave individuals and organisations vulnerable to attacks. Misunderstanding cybersecurity practices can lead to weak defences, data […]
October: Cyber Security Awareness Month 2024 Safe Surfing: Best Practices for Browsing the Internet The internet is an incredible resource, offering a wealth of information, entertainment, and connectivity at our fingertips. However, it also presents various risks, from malware and phishing attacks to data breaches and privacy violations. Safe browsing is essential to protect yourself […]