The Certification Challenge
Companies either small or large are nowadays experiencing cyber attacks on a daily basis. With 25k the average cost of a cyber attack, often companies that are attacked actually close down, or become a target and are attacked more than once.
To tackle this, the EU Cybersecurity Act entered into force less than one year ago with the aim to establish an EU-wide harmonised framework to certify ICT products and services. Standards can help companies act with confidence to protect themselves, their customers and partners from cyberattacks and data breaches.
However, for an SME or Start-up who wants to start a certification process, this is a very complex environment. With many standards, schemes and methodologies around, a guidance is needed to help them understand where to start, before starting a typical process involving reaching out to a Consulting firm to implement standards or technical specifications, performing an internal self-assessment of products, processes and services and finally being accredited as certified by a third independent party.