Celebrating a Major Milestone: Achieving Cyber Essentials Plus!

MGISS | 20 December 2024

PASSED stock photo

We are absolutely thrilled to share that MGISS has successfully achieved the Cyber Essentials Plus accreditation following a comprehensive external audit in September. This milestone is a significant addition to our existing Self-Assessed Cyber Essentials certification, which we have proudly maintained for the past two years.

But that’s not all! This achievement means we have now completed our broader objective of securing all the key Cyber & Information Security accreditations that are crucial for organisations in the Critical National Infrastructure and Local and National Government sectors.


For the previous two years, we have maintained accreditations in ISO9001, ISO14001, ISO27001, and Cyber Essentials. Let us explain what these mean:

ISO9001 (Quality Management Systems)

ISO9001 implies we are meeting customer expectations, and have created an effective process and team to deliver flawless products and services consistently. The main principles are as follows:

  • Engagement of people
  • Customer focus
  • Leadership
  • Process approach
  • Improvement
  • Evidence-based decision making
  • Relationship management

ISO14001 (Environmental Management)

This means we are taking proactive measures to minimise our environmental footprint and achieve our environmental objectives. ISO 14001 aids organisations in enhancing their environmental performance by:

  • Complying with legal and regulatory requirements,
  • Identifying and understanding the environmental aspects of their activities, products, and services.
  • Establishing environmental policies and objectives to guide their efforts.
  • Implementing controls to manage environmental impacts effectively.

ISO27001 (Information Security Management)

Signals aptitude in effective information security management systems, ensuring the business securely stores confidential information.

This encompasses far more than just IT. A significant aspect of the ISO 27001 Standard focuses on data security throughout all areas of a business, both online and offline.

Cyber Essentials Plus

Our new credentials, Cyber Essentials Plus, one step up from Cyber Essentials, demonstrates an effective, government backed minimum standard scheme that protects against the most common cyber attacks. While both Cyber Essentials and Cyber Essentials Plus require the implementation of the same five basic cyber security controls (firewalls, secure configuration, access control, malware protection, and security update management), Cyber Essentials Plus involves an additional technical audit.

This technical audit includes on-site internal vulnerability scans, tests of in-scope systems, and an off-site external vulnerability scan conducted by the certification body. This extra layer of verification provides greater assurance that our cyber security measures are effective and robust!


So, what does this mean for our customers and partners? Well, with these ISO accreditations in place, we are better positioned than ever to work with organisations that require robust cybersecurity credentials from their supply chain partners. This accomplishment is a testament to our unwavering commitment to maintaining the highest standards of security and compliance. It also means we can offer even more assurance to our customers that their data is in safe hands, and our services are both reliable and secure.

Achieving these certifications has been a team effort, and we couldn’t have done it without the hard work and dedication of our incredible team. From the initial self-assessment to the rigorous external audits, every step has been a demonstration of our team’s expertise and commitment to excellent customer service.

We are incredibly proud of this achievement and excited about the future. These accreditations not only reflect our dedication to cybersecurity but also enhance our ability to serve our customers effectively and build stronger, more secure systems and partnerships.

As we continue to grow and evolve, we remain committed to upholding these standards and continuously improving our practices to stay at the forefront of cybersecurity and information management. We appreciate the continued trust and support of our customers and partners, and we look forward to achieving even more together.

Thank you for being part of our journey towards excellence! Stay tuned for more updates and exciting developments in the new year!


About

MGISS provide Geospatial Consultancy, GIS Analysis and GNSS hardware. We independently advise on the smarter use of Geospatial data, technology and the digital transformation of field operations, taking organisations on a journey from asset Location to Insight.