Standards Frameworks & Requirements

Preventing cyber crime and security breaches is vital for all organisations, but it can be challenging to know which cyber security measures to prioritize. Benchmarking your security controls against an established standard is a good way of ensuring you are following best practice. However, with so many cyber security standards and frameworks to choose from, how do you know which best suits your needs? This page provides an overview of some of the most popular cyber security standards available and their requirements.


Minimum Cyber Security Standard

The MCSS (Minimum Cyber Security Standard) is the first in a proposed series of technical standards to be developed by the UK government in collaboration with the NCSC (National Cyber Security Centre). It will be incorporated into the Government Functional Standard for Security when it is published. The MCSS sets out a series of mandatory cyber resilience outcomes that all government departments must achieve to meet their obligations under the SPF (Security Policy Framework) and National Cyber Security Strategy. The Standard can also be used by any other organisation to benchmark its cyber resilience efforts.


ISO/IEC 27001:2013

ISO 27001 is the international standard that sets out the specification for an ISMS (information security management system). Its best-practice approach helps organisations manage their information security by addressing people and processes as well as technology. The Standard offers a set of 114 best-practice security controls that can be applied based on the risks you face.

These controls are then implemented as part of a broad organisational structure to achieve externally assessed and certified compliance. Independently accredited certification to the Standard is recognised around the world as an indication that your ISMS is aligned with information security best practice.


Featured Products and Services

  • Find out more about cyber security and see our full range of cyber security products and services