Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Area

Control

SMB1001 Tier 3

SMB1001 Tier 6

Essential 8 Maturity Level 1

Technology Management

Technical Support Specialist

(tick)

(tick) plus add a SLA with MSP

Firewall

(tick)

(tick)

Anti Virus Software

(tick)

(tick)

Devices Patched

(tick)

(tick)

TLS / SSL Certificate on Website

(tick)

(tick)

Servers Patched

(tick)

(tick)

Includes online services and vendor mitigations. Includes internal Office Suites

Scan Websites for Vulnerabilities

(tick)

Vuln Scanner on internal and External Assets, inc Email, Browsers, Office Suites etc

Data Encrypted At Rest

(tick)

Application Control

(tick)

(tick) Including on Workstations. Restricts Access to Excecutables etc

Disable Microsoft Office Macros

(tick) can be disabled with notification

(tick) Except where demonstrated business Environment. With AV Scanning

Conduct Penetration, Vulnerability and Social Engineering Testing

(tick)

Remove Online Services No Longer In Use

(tick)

Remove OS that are no longer supported by Vendors

(tick)

Browser Hardening

(tick) No IE11, No Java, No Web Ads.

Education and Training

Cybersecurity Training

(tick)

(tick) more involved

Access Management

Change Passwords Routinely

(tick)

(tick)

No Admin Access

(tick)

(tick)

(tick) Validate Requests for Access. Separate Account solely for Admin Usage. Privileged Users Internet Access Restricted. Separate Operating Environments

Individual User Accounts

(tick)

(tick)

Password Manager

(tick)

(tick)

MFA on Email

(tick)

(tick) no text, email or voice

(tick) All Organisation Online Services

MFA on Business Applications and Social Media

(tick)

(tick) no text, email or voice

(tick) All Third Party Online Services

RDP over VPN

(tick)

(tick)

Remote Access Cloud Credentials Management

(tick) including setting up SSO and IAM

MFA for Digital Data

(tick) all important digital data no text, email or voice

MFA on VPNs

(tick) no text, email or voice

MFA on RDP

(tick) no text, email or voice

Backup and Recovery

Backup and Recovery

(tick)

(tick) more involved, including testing

Business Cyber Insurance

(tick)

Policies, Processes and Plans

Digital Asset Register

(tick)

(tick) more details

Automated Asset Discovery

Confidentiality Agreement for Employees

(tick)

(tick)

Invoice Fraud Policy

(tick)

(tick)

Visitor Register

(tick)

(tick)

Cybersecurity Policy

(tick)

(tick)

Incident Response Plan

(tick)

(tick) including testing and more details

Secure Physical Document Destruction

(tick)

(tick)

Secure Device Disposal

(tick)

(tick)

Digital Trust Program for Suppliers

(tick)

Police Checks for Employees with Admin Access

(tick)

  • No labels