Hiscox has achieved the highest level of cyber security under a UK Government backed scheme. Following a two day test involving external auditors examining documentation and processes around Hiscox’s cyber security, and technical experts conducting penetration tests on its systems, Hiscox is now a Cyber Essentials Plus accredited firm.
The basic Cyber Essentials scheme helps firms of any size to protect themselves from the cyber threat. At its most basic level it is a self-certified process, rising to Cyber Essentials Plus for those organisations who would like the additional comfort of having their security tested by external auditors.
“We have been self-certified under the Cyber Essentials basic scheme since September 2016,” says Elke Bachler, Hiscox’s Chief Information Security Officer, “but we were keen to subject our systems and processes to the external, independent testing that forms the Cyber Essentials Plus accreditation. Cyber Essentials Plus helps advertise to our customers, partners and suppliers that we are doing the right things when it comes to cyber security.”
Ongoing accreditation under the Cyber Essentials Plus scheme means Hiscox will continue to be tested annually but it doesn’t replace Hiscox’s own testing programme adds Elke: “We run our own regular penetration tests and while Cyber Essentials Plus is a great validation of what we’re doing and that we’re doing the right things technically, we cannot afford to be complacent and we continually look to strengthen our own policies and processes.”
For more information on the scheme go to Cyber Essentials. (external link)