Approved Business Logo
Gift a Tree Reviews Articles FAQs
Login

Company details for:

Regola Digital Consulting

Submit press release
(3)
Regola Logo. Pentagon: five controls

Office 1.19, Torbay Business Centre,
Lymington Road,
Torquay,
Devon,
TQ1 4BD,
United Kingdom

Quick Links:

Products / Services

Cyber Essentials

Cyber Essentials Consultancy & Certification

Cyber Essentials is a set of basic technical controls organisations should have in place to protect themselves against common online security threats.
This certification is suitable for all organisations, of any size, in any sector.
As well as helping to guard your organisation against cyber attack, Cyber Essentials demonstrates your commitment to cyber security to your customers and suppliers.
Cyber Essentials Plus

Cyber Essentials Plus Testing & Certification

Cyber Essentials Plus is an expansion of the Cyber Essentials Self-Assessment questionnaire which includes an audit of the organisation's IT systems. This is then submitted to and marked by a certification body. All organisations MUST have Cyber Essentials certification dated within 3 months prior to applying for Cyber Essentials Plus.

Cyber Essentials Plus consists of an audit of your organisation's system by a highly trained assessor. The goal of said assessment is to confirm that all controls and measures that have been declared in the Cyber Essentials questionnaire have actually been put into practice within the organisation's network. By undertaking and completing Cyber Essentials Plus, you can declare that your organisation has taken the appropriate measures to meet baseline security standards set out by the Cyber Essentials Scheme.
Cyber Assurance

Cyber Assurance Level 1 & 2 Consultancy & Certification

Cyber assurance is a comprehensive, flexible and affordable cyber security standard. This provides assurance that an organisation has put in place a range of important cyber security, privacy and data protection measures. It aligns directly with the UK Government’s 10 steps to Cyber Security with additional Data Privacy controls and offers smaller companies within a supply chain a ‘right sized’ approach to show their level of information security for a realistic cost.
Important cyber security measures are included such as assessing and managing risk, training people and setting practical policies and procedures. Key resilience strategies are covered and include backing up data, business continuity planning and incident response. Legal and regulatory requirements are also addressed such as your country’s implementation of GDPR (in the UK this is the Data Protection Act). Furthermore, the IASME Cyber Assurance standard was developed over several years during a government funded project. This was in order to create an affordable and achievable alternative to the international standard, ISO 27001. You must have Cyber Essentials first in order to achieve Cyber Assurance.
Cyber Baseline

Cyber Baseline Consultancy & Certification

IASME Cyber Baseline

Over ten years ago, Cyber Essentials was designed to certificate good cyber security practice in organisations in the UK and Crown Dependencies. Using similar principles, IASME Cyber Baseline has been designed to help organizations worldwide to identify, mitigate, and manage cyber threats and gain certification for their efforts. It provides an affordable and practical way to demonstrate commitment to cybersecurity and protect data. By achieving Cyber Baseline certification, companies outside the UK and Dependencies can significantly reduce their risk of cyberattacks and enhance their global reputation.

ISO27001 Preparation

This is the Gold Standard of Cyber Security certifications. Richard Henson knows this standard from its first iteration in 2005, to the most recent, in 2022.

Cyber Essentials Preparation

Some IT people find the Cyber Essentials guidance intuitive; many business people find the language and concepts more demanding. We are here to support businesses!

It is normal for a business to take the Cyber Essentials assessment and be told by the assessor that they have a small number of corrections to make. Few get it completely right first time. What a business would not want, however, to do is take Cyber Essentials and then comprehensively fail it. As a new service, to prepare businesses for assessment, we are offering microbusinesses a new service of 30 minutes free discussion, with a follow-up and a clearly written set of "do's and don'ts". Extra time and consultancy beyond this is available, but will be charged at the normal rate.
Cyber Resilience covers technical AND people controls

Preparation for Cyber Resilience

The Department of Science and Information Technology (DSIT) has recently released a code of practice for organisations who wish to be Cyber Resilient. Cyber Essentials Plus, whilst very welcome, focuses on technical controls, and is not sufficient on its own.

Whilst DSIT cannot recommend particular commercial product, they have done mapping exercises for the code of practice against both IASME Cyber Assurance (ICA). They have found that both do fulfill their requirements for cyber resilience (both require relevant management and user controls, as well as technical controls).

ISO27001 is designed for larger organisations, and Regola would always recommend that an organisation with sufficient resources should aim for this "gold standard".

However, for smaller organisations, ICA (particular at L2) would be sufficient for smaller organisations seeking cyber resilience.

Regola's experienced staff provide consultancy for organisations wishing to be Cyber Resilient.

Cyber Security Awareness Training

Cyber Security Awareness Training
Cyber Resilient

What is Cyber Resilience?

We think all businesses should aim for Cyber Essentials. This is only about 5 technical controls but if correctly implemented they will stop 80% of attacks. Really good cyber security, or Cyber Resilience cannot happen overnight. It will be a journey that could last years. We can take even the smallest business through the various stages of getting good digital security that is suitable for them. 

Every business is different. In this option, we look at the journey businesses can take beyond Cyber Essentials to develop a system that is truly resilient to attack, and quick to recover after one.
gap analysys

Gap Analysis

Current state and what is needed for Improved State

About us

Our mission is to assist organisations to enhance their cybersecurity, regardless of their current level of preparedness.

We can assist organisations of any size and complexity looking for general security guidance or wishing to prepare for and achieving a cyber security certification. For those not already certificated, we recommend Cyber Essentials, a government-supported initiative designed to help organisations defend against common online threats, in the first instance, and to help protect the digital supply chain. We are very familiar with the Cyber Essentials scheme, and our assessors have marked questionnaires from 115 organisations.

We are are a Certification Body for Cyber Essentials (CE), CE+, and Cyber Assurance L1 (questionnaire) and L2 (audited). Apart from assessment, our main business is advising and assisting organisations to achieve whatever level of cyber security protection that they are hoping for. If they have not yet chosen from the array of certifications available, we can help them with that decision as well. We also produce regular blogs that help organisations with the important task of keeping up with aspects of cyber security.

Cyber Essentials essentially consists of a successful assessment on five technical areas of security: devices, firewalls, configuration, user access control and combating malware. It was was developed by NCSC (National Cyber Security Centre, an offshoot from GCHQ), and is considered to be an excellent foundation level for organisations. Engaging successfully with this certification process demonstrates your commitment to securing your systems by adhering to current industry best practices, and statistics indicate that it protects against 80% of cyber attacks. This is why insurers like it. They get 92% fewer claims from CE organisations. You'll therefore also get a year's free cyber liability insurance thrown in with your Cyber Essentials certificate, if you wish.

Our Services

We believe in getting certification to provide an official seal of approval for efforts to acquire skills and knowledge, and put them into practice. Whilst Cyber Essentials is an excellent place to start with acknowledgement of cyber security prowess, some organisations see any entry level qualification as just a beginning towards a resilient and robust cyber security culture. Apart from Cyber Essentials assistance and certification, we also offer:

IASME Cyber Assurance: Level 1 involves assessing your existing cybersecurity system to identify weaknesses, common hacker threats, and vulnerabilities that need to be addressed. Level 2 audits the system you have explained in your level 1 assessment. It covers similar ground to the gold standard ISO27001 at a fraction of the price.

IASME Cyber Baseline: designed to assist organisations globally in identifying, mitigating, and managing cyber threats while achieving certification for their efforts. Cyber Baseline goes further than Cyber Essentials, including other important functions like Backup. It can be seen as an intermediate between Cyber Essentials and Cyber Assurance.

Cyber Essentials Plus: builds on the "Cyber Essentials Verified Self-Assessment" by incorporating an organisational audit to verify the answers to self-assessment questions.

ISO27001 Preparation: ISO2001 is the gold standard for Cyber Security certification. Like Cyber Assurance, ISO27001 is only 1/3 technical controls. The rest are user controls and management controls. We provide templates and GAP analysis, and give you realistic advice on how to close that gap and achieve compliance!

We have a dedicated team with extensive experience ready to assist you throughout the entire process of obtaining any or all of our certifications. If you are not yet ready to commit to a certification we can still help. Cyber Essentials is based on five technical controls. You can work on those controls one by one. 

We invite you to get in touch. We will address every inquiry personally the same day.

View Website

Images

Cyber Essentials
Cyber Assurance
Cyber Baseline
Cyber Essentials Plus
Cyber Security Certifications
Cyber Essentials
Cyber Assurance
Cyber Baseline
Cyber Essentials Plus
Cyber Security Certifications
Cyber Essentials
Cyber Assurance
Cyber Baseline
Cyber Essentials Plus
Cyber Security Certifications

Videos

Articles / Press Releases

11/11/2025 - Why Firewalls Matter and why they must be properly configured There is a lot of confusion about firewalls. They can be hardware-based (as in the Internet Router that provides your home or office with Internet access) or software-based (as in your Windows or Apple laptop or desktop computer). As the firewall links to the Internet, it could link to anyone (or anything) that may wish to get at your business.
14/10/2025 - Windows 10 is due to expire on 14th October. How to get another year's support The matter of Windows 10 coming to the end of its life as a supported operating system on October 14th has caused consternation amongst some Windows users, and in some organisations. The good news is that Microsoft relented, and allowed another year through ESU. You have to register for it, though, to remain protected. This short article explains what Windows 10 users can do, to remain supported by Microsoft.
12/09/2025 - Demystifying Peer to Peer Networks: A Comprehensive Guide For some organisations, Peer-peer networks have become an attractive alternative to the traditional centralised client-server model. This article examines some of the attractions (and limitations) of the peer-peer approach
26/08/2025 - When Trust is the weakest link: The hidden danger behind MFA Even large companies (e.g. Allianz) can be breached if digital security fails as a barrier. MFA is Multi-factor Authentication (i.e. using more than just username/password) to keep digital access secure. It is considered as essential for services accessed through the cloud. In this post, we’ll touch on how the Allianz breach happened, and what your business can do to stay ahead of phishing attacks that aim for the human element, not the firewall.
16/07/2025 - From Welcome to Farewell: The Cybersecurity Risks involved in Employee Onboarding and Offboarding This article looks at the cyber security dangers associated with onboarding and offboarding an employee or contractor. It also provides guidance for avoiding the potential cyber security traps with both welcoming new staff, and saying farewell to existing employees. Cyber attackers are forever vigilant (or have software that is!) so don't get caught out.

Brochures

Introduction to Regola and Cyber Essentials
Why does your organisation need Cyber Essentials
43% of UK Businesses Hacked
88% 0f businesses don't know
Five controls coaster design
Don't leave it too late
Regola Flyer

Reviews

Trade Associations

Cyber Essentials Logo
Cyber Essentials Certified Logo
IASME Logo

Request a Quote

Visit website