Cyber Essentials Assessment Case Study: Thrive Tribe - Enhancing Cybersecurity Skip to main content
Sign Up for our latest Webinars
Book a Free Consultation
Optimise Events
Services
Managed Services
Service Desk
Hybrid Cloud Management
Managed Security Services
Managed Device
Project Management as a Service
Business Continuity
Monitoring as a Service
Managed Print Services
Microsoft 365 Services
Microsoft Copilot
Modern Workplace
Endpoint Management
Hardware & Software
Data Management Solutions
Procurement Portal
Collaboration Spaces
Voice & Networks
ESPRIA Connect
Unified Communications
Contact Centre
Microsoft Teams
WiFi & LAN
WAN & Fixed Line
Mobile Voice & Data
Cyber Security Services
Awareness Training
Breach and Attack Simulation
Cyber Essentials Enablement
Data Protection
Email Security
Identity & Access Management
Managed Detection & Response
Security Service Edge 
Hybrid Cloud
Digital Transformation
Hybrid Cloud Management
Document Solutions
Managed Print Services
Secure Printing
Eco Printing
Document Management
Cloud Print Services
Multifunctional Devices
Printers and Photocopiers
Printer Leasing
Photocopier Leasing
Apple Services
Apps & Data
Power Platform
SharePoint Online
Sectors

Sectors

Case Studies
About Us

About Us

News & Insights

News & Insights

FEATURED NEWS

Protect your student data from continued ransomware attacks, says Espria

Read Now
Contact Us

Background

Thrive Tribe, a leading health and wellbeing organisation, sought to enhance its cybersecurity posture to protect sensitive client data and maintain trust with its stakeholders. As their outsourced managed IT provider, Espria were well placed to support Thrive Tribe with the certification, working closely with their team to guide and support them through every stage of the Cyber Essentials and Cyber Essentials Plus processes.

The Challenge

Thrive Tribe wanted to achieve Cyber Essentials and Cyber Essentials Plus certifications to ensure compliance with industry standards and to demonstrate their commitment to cybersecurity.

The Process

The certification process required Thrive Tribe to be assessed against five key security controls:

  • User Access Controls
  • Security Update Management
  • Malware Protection
  • Firewalls and Internet Gateways
  • Secure Configuration

The Espria Compliance Team worked closely with Thrive Tribe to ensure that all controls were up to the required standard.

Specific Steps Taken

  • Initial Assessment and Planning: Espria began by identifying any gaps in the requirements of the Cyber Essentials framework.
  • User Access Controls Implementation: Collectively, existing user access controls, were reviewed to ensure only authorised personnel had access to sensitive data and systems. This included confirming all systems were secured with multi-factor authentication (MFA).
  • Security Update Management: The team checked that all software and systems were updating within the specified 14-day period to maintain security.
  • Malware Protection: The installation and configuration of their antivirus and anti-malware solutions across all endpoints were confirmed to be in accordance with industry best practice and that real-time protection was configured correctly to detect and mitigate any potential threats.
  • Firewalls and Internet Gateways: The configuration of firewalls and internet gateways was reviewed to ensure they effectively blocking unauthorised access and were protecting the network from external threats.
  • Secure Configuration: Espria conducted a thorough review of system configurations to ensure they complied with security best practices.
  • Final Assessment and Certification: After implementing the necessary controls and measures, a final assessment was conducted to ensure compliance with the Cyber Essentials requirements. The self-assessment form was submitted and a third-party verification was conducted to confirm compliance.

Policies and Procedures Review

During the initial assessment, the Espria team reviewed several key policies and procedures, including:

  • Access Control Policy
  • Patch Management Policy
  • Antivirus and Anti-Malware Policy
  • Firewall Configuration Policy
  • Secure Configuration Policy

Cyber Essentials Plus

Following the successful completion of the Cyber Essentials certification, Thrive Tribe went onto achieve Cyber Essentials Plus which involved an external assessment. This verified the security measures outlined in the Cyber Essentials certification were actively in place and being monitored. The external assessment included:

  • Vulnerability Scanning: Thrive Tribe’s network and systems were analysed in order to identify any potential security weaknesses.
  • Device Testing and Assessment: All corporate devices were tested to ensure they were secure and managed in accordance with the Cyber Essentials Plus requirements.

Results

Thrive Tribe successfully achieved both Cyber Essentials and Cyber Essentials Plus certifications, demonstrating their commitment to cybersecurity and providing assurance to their clients and stakeholders. These certifications have helped Thrive Tribe to:

  • Enhance their cybersecurity posture and the protection of sensitive client data.
  • Build trust with existing clients and attract new clients.
  • Ensure compliance with industry standards and regulations.

Client Testimonial

As part of our ongoing commitment to cybersecurity, we saw the importance of achieving Cyber Essentials and Cyber Essentials Plus certifications for our existing clients as well as suppliers and prospective new customers. The support and guidance provided by the Espria Compliance Team was invaluable in helping us achieve these certifications.

XX at Thrive Tribe

Our clients

Case Studies

IT Services

Thrive Tribe

Thrive Tribe, a leading health and wellbeing organisation, sought to enhance its cybersecurity posture to protect sensitive client data and maintain trust with its stakeholders.

Read More
IT Services

Vercity – Ensuring Business Continuity & Security into the Future

Vercity provides a range of financial management & consultancy services, and they required an IT vendor to provide industry insights and help keep their data secure.

Read More
IT Services

Team17 – Using Power BI to Improve Reporting & Business Decision Making

A multi-award-winning video game development company got in touch with Espria to discuss improving their reporting and utilisation of their data.

Read More
IT Services

The Development Bank of Wales – Managing a Laptop Refresh Project

The Development Bank of Wales is a public sector finance company employing almost 300 people based in Wales. Espria were engaged to manage a laptop refresh project.

Read More
Please fill out the below form and one of our team will get back to you asap. Alternatively please call 0330 175 5588 to speak to a member of the Espria team.
Veeam
sophos sq
Microsoft
Mimecast

Book a Call​

Why not let us call you? We like to keep things simple, and our team are here to advise and support you in your technology transformation.
Book a Call​

Sign up to our quarterly newsletter for the latest news, updates, case studies and insights.

Sign up
Linkedin Youtube
Services
Managed Services
Cyber Security Services
Modern Workplace
Document Solutions
Voice & Networks
Apps & Data
Apple Services
Hybrid Cloud
Sectors
Case Studies
About Us
News & Insights
Contact Us

Useful information:

Code of Conduct
Terms & Conditions
Privacy Policy
View your Bill
Policy Statements
Support

Please fill out the below form and one of our team will get back to you asap. Alternatively please call 0330 175 5588 to speak to a member of the Espria team.