The Essential Eight, what it means to your business plus a bold prediction
The Essential Eight is a set of mitigation strategies developed by the Australian Cyber Security Centre (ACSC) designed to improve the cyber security posture of Australian Businesses. The overarching goal of the Essential Eight is to make it much harder for your I.T. systems to be compromised. The eight areas of interest are:
- application control
- patch applications
- configure Microsoft Office macro settings
- user application hardening
- restrict administrative privileges
- patch operating systems
- multi-factor authentication
- regular backups
The general idea is that organisations are rated on a scale, known as a ‘maturity model’ to determine what cyber security strategies it has in place in relation to each of the eight areas defined above. Sounds like fun, right?
There are four maturity levels for each item, maturity level zero just means it hasn’t been formally assessed yet, whereas levels 1, 2 and 3 offer increasing levels of protection or ‘system hardening’. Achieving maturity level 1 in most areas is relatively straight forward, in fact most of our MSP clients already meet the requirements to achieve a maturity rating of at least 1.
If you want to learn more about the Essential Eight start here.
Right now, as far as I know there is no requirement for any business in Australia to comply with any of the Essential Eight, I’m sure there would be private agreements that reference it already but nothing written in to law.
I promised you a bold prediction and here it is, I think we are going to start seeing a mandated requirement for Essential Eight compliance in the not too distant future. It will start with very specific types of businesses at first, for example the federal government might require all tax agents who have online access to their client’s data to be assessed for their Essential Eight maturity and maintain a particular maturity level. Businesses which operate trust accounts such as conveyancing, law firms and real estate agents will probably be next in line as will I.T. service providers like us. This will probably flow through to private business agreements as well and might even become a selling point – “Come do business with us, we’re Essential Eight certified!”.
Very big businesses such as banks and government departments are already implementing the Essential Eight and I wouldn’t be at all surprised if big businesses over a certain turnover threshold are mandated to be Essential Eight compliant no matter what industry they are in.
We all know the wheels of government turn slowly but I think these changes are probably only a few years away at most.
If you would like to know how your business stacks up against the Essential Eight maturity model and what can be done to improve your cyber security posture let us know.
Our Services
Our fixed price Managed IT Support Programs will increase your businesses competitiveness and efficiency with our I.T. Professionals on call for you 24/7.
Class leading response times ensure your that when things do go wrong we’ll be there in a hurry so you can get on with doing what your business does best.
Testimonials
Attentive and thorough, Australia Wide I.T. get onto any of our I.T. problems quickly – with prompt, friendly and efficient service. Whenever we need to upgrade, we know we can trust their knowledge in supplying flawless new equipment that always works both physically, and to suit our needs.
Alison
My business has grown from 3 stores to 5 stores over the last 3 years; one of the unfortunate consequences of this has been the fact that our old server and network could not cope with the growth. After much deliberation we chose Australia Wide I.T. to not only arrange the supply and installation of our new network, but to also provide long term support. We have been very pleased with our decision and would happily recommend them.
Bruce
Very much appreciate your very quick response today. It was pay day today and I was a bit worried (that we wouldn’t be able to process the pays) but because of you all is well, so a big thanks.
Dale
The team at AWIT deliver nothing but breathtaking service!!!!
Brett
We would recommend you to anyone, anytime.
Thank you all so very, very much for all your support. Not to mention bringing back my files to my Company. I cannot thank you guys enough.
Thanks again.
Leigh
Our previous I.T. Service Provider was distant, hard to contact and not customer focused. With Australia Wide I.T. we now have great service with a human touch. Our calls are answered promptly and the team is always ready to help in any way.
The maintenance program put in place by AWIT offers us peace of mind that our entire system is correctly and closely monitored.
Monica
A very big thank you from me to all of the guys there….You make things so easy for us and are always available to help.
A massive shout out to the Nash though for fixing our printer – you nailed it Nash and not only changed MY life, but also helped to save some trees in the Amazon Forest!
Thanks to you all.
Jo
They’ve gotten to know our business so well and they’re truly interested in helping us. It’s like having our own I.T. Department in-house. Australia Wide I.T. takes a personal interest in our team, our business and where we’re going. They’re like family.
Other I.T. companies just didn’t seem to have the same depth of knowledge as these guys. Rather than blame the user (us) they go the extra mile, locate the problem and fix it – Every time!
Coral
Thanks for all your help today. Your patience & tenacity for solving the problem is greatly appreciated.
Jacinta
Your work last week was amazing. You couldn’t have been more supportive or expert in your conduct. I am very grateful and am amazed at your generous invoicing of last week’s work. I can only repay you by recommending you to as many people as possible.
Thank you. It is refreshing to know that when a problem occurs, you are always there – with great service.
Keran