The extension to the deadline for approved security alarm companies across the UK to complete Cyber Essentials certification and comply with the NPCC policy has been welcomed.
The team at consultancy Hantec Systems has said that security companies across the UK should welcome the extension to the deadline of April 2023 because it offers them more time to secure certification and to protect their business, staff and customers.
In addition to the extension, the NPCC has also announced that any company already holding certification to ISO 27001 Information Security Management will no longer be required to obtain Cyber Essentials certification in order to maintain compliance with the Policy. Cyber Essentials is the minimum standard and a company that wishes to offer exceptional standards of service should implement ISO27001.
Andy Carver from Hantec Systems said: “The extended deadline is really positive for security companies because it means they have more time to secure Cyber Essentials and ensure they are not removed from police approved lists.
“Unfortunately if security companies do not have ISO27001 Information Security or Cyber Essentials by April 2023 they will be removed from police approved lists, meaning officers will no longer attend their alarm calls. We are encouraging companies to use the extra time wisely.”
Cyber Essentials is a UK certification which ensures an organisation has the minimum level of protection in cyber security. A company is certificated through annual assessments to maintain certification. Failure to comply will have severe implications for thousands of businesses that could find their insurance policies are no longer valid if their security company is not police approved.