Leading cloud collaboration service Kahootz, is pleased to announce that they have received the UK Government backed Cyber Essentials Plus accreditation.
Kahootz is the provider of the MOD’s Defence Share platform and is used extensively throughout the rest of the public sector, including the NHS and Department of Health.
Cyber Essentials Plus is awarded to organisations that can show that they have the necessary security procedures in place to prevent Internet-originated attacks against their IT systems.
The assessment is completed through the independent 3rd party testing of their cyber security processes.
It adds to Kahootz’s strong collection of security credentials that include:
- ISO27001 – Kahootz has been certified since December 2012 and has an excellent record of zero failures, zero recommendations and zero observations.
- IT health check – An annual IT Health Check (ITHC) is undertaken by a CHECK accredited testing partner. This is an exhaustive and rigorous check to ensure that Kahootz is secure against a determined hacker.
- BS7858 – All Kahootz staff are security screened to the BS7858 standard, by a NSI gold accredited organisation.
The Cyber Essentials Plus test focuses on five key security controls:
- Boundary firewalls and internet gateways – Ensuring that devices are set up to prevent unauthorised access to or from private networks.
- Secure configuration – Ensuring that systems are configured in the most secure way for the needs of the organisation.
- Access control – Ensuring only those who should have access to systems to have access and at the appropriate level.
- Malware protection – Ensuring that virus and malware protection is installed and up to date.
- Patch management – Ensuring that the latest supported versions of applications are used and all the necessary patches supplied by the vendor have been applied.
Kahootz’s CTO Peter Jackson said: “Whilst our existing accreditations prove that the Kahootz service is secure, Cyber Essentials Plus proves that our corporate IT infrastructure is also secure.
“That’s important because it means that our own IT Infrastructure can’t be used as a weak back-door attack on the Kahootz service itself.
“Alongside our other security measures, our clients can be further assured that we have the high level of organisational protection in place needed to mitigate any threats that may pose a risk to their data.”
Are you currently assessing cloud collaboration solutions? To help inform your decision, download and read our guide that explains how Kahootz meets the 14 Cloud Security Principles as defined by the UK Government.
