Today, we are proud to share that Nasstar has successfully passed the Cyber Essentials Plus (CE+) audit with zero recommendations from the assessor.
This achievement is a major milestone for our business and a testament to the strength of our security culture. The independent assessor praised our “excellent” access controls and described our user demonstrations as “fantastic” - highlighting the expertise and dedication of our people when it comes to keeping our systems secure.
What is Cyber Essentials Plus?
Cyber Essentials Plus is the highest level of the UK Government-backed Cyber Essentials certification scheme.
While the standard Cyber Essentials certification involves a self-assessment of security controls, Cyber Essentials Plus goes further, requiring a hands-on technical audit conducted by independent security assessors. This means our systems and processes have been rigorously tested in real-world conditions to ensure our defences are not only in place but working exactly as they should.
The five pillars of protection
The assessment focused on the five core areas of cyber security:
Firewalls & internet gateways - Preventing unauthorised access from outside networks.
Secure configuration - Ensuring devices and systems are set up safely from day one.
User access controls - Making sure only the right people have the right level of access.
Malware protection - Blocking and removing malicious software.
Patch management - Keeping all software up to date to close vulnerabilities quickly.
Passing this audit proves that Nasstar has robust, effective security controls across all these critical areas.
What this means for our customers
For our customers, partners, and stakeholders, this certification brings peace of mind.
It demonstrates our commitment to protecting your data and the systems that support your services.
It reduces the risk of common cyber attacks that could impact business continuity.
It supports compliance with regulatory requirements and helps maintain key contracts, especially in highly regulated industries.
It shows that security is embedded in our culture, from our technical controls to the way our people work every day.
In short, working with a Cyber Essentials Plus certified partner means working with an organisation you can trust to safeguard your information and operations.
Achieving Cyber Essentials Plus with zero recommendations is a clear demonstration of the strength of our security practices and culture. For our customers, it means confidence that data is protected to a highly recognised standard and that we are committed to continuous improvement in safeguarding the services they rely on.
Looking ahead
Achieving Cyber Essentials Plus is not just a one-off accomplishment. It’s part of our ongoing commitment to continuous improvement in cyber security.
We’ll keep investing in our people, processes, and technology to stay ahead of evolving threats and to deliver the secure, reliable services our customers expect.
Thank you to everyone across Nasstar who contributed to this success, and to our customers for trusting us to protect what matters most.
