Blogs
Attaining a Security SPD
In the second article in our Security SPD series, Michael Brooke offers tips to help partners gain the insight track from start to finish.
Ensuring Cybersecurity Resilience
The Essential Eight is a widely used framework to help businesses identify the most common security threats, assess risk levels for each threat, and put mitigations in place for the eight most common vulnerabilities in their networks.
The Australian Cyber Security Centre (ACSC)* developed these prioritised mitigation strategies to provide businesses with clear guidance on how to mitigate cyber threats and incidents. Crayon’s cybersecurity specialist subsidary, emt Distribution can assist your organisation to evaluate the effectiveness and maturity level of all the Essential Eight security controls.
How do we do it
Collect
Conduct discovery workshops to collect relevant evidence and identify current baseline.
Analyse
Review the gathered data, identify risk and compare it to highlight maturity gaps according to the ACSC Essential Eight.
Report
Deliver the executive report highlighting the effectiveness of the controls, with emphasis on those that need immediate remediation based on risk categories: PREVENT, LIMIT and RECOVER.
We provide a detailed assessment of the organisations current state against the eight essential security controls recommended by the Australian Cyber Security Centre (ACSC).
Outcome based workshops. Timelines vary depending on maturity level assessment focus area.
Detailed reports provide a clear view of findings per control, priority actions and recommendations.
Partners have the options to white label the assessment or position as an independent third-party service.
Experienced regional assessors backed by a global team of cybersecurity experts.
Why choose Crayon’s channel services for Essential Eight Assessments
Working with Crayon’s channel team provides partners with advantages, whether they want to gain traction in this domain or scale an existing cybersecurity practice. Partners can leverage the assessment service to support ongoing conversations with customers, and bring their own services, or allied partners with cybersecurity expertise to the table. Equally, partners with mature cybersecurity practices can utilise Crayon’s service to provide account coverage and build pipeline for future works.
Whatever the scenario for your business, our team offers an end-to-end service that can help you take your customers from initial assessment to project scope, solution consulting and full implementation.
FAQs
The ASD Essential Eight is a cybersecurity framework developed by the Australian Signals Directorate (ASD) to help organizations mitigate cyber threats and enhance their cybersecurity posture.
The Essential Eight comprises eight key strategies that organisations can implement to mitigate the most common cybersecurity threats. These strategies include application allowlisting, patching applications, configuring Microsoft Office macro settings, user application hardening, restricting administrative privileges, patching operating systems, multi-factor authentication, and daily backups.
The Essential Eight provides organisations with a set of practical, actionable strategies to enhance their cybersecurity defenses and protect against a wide range of cyber threats, including malware, ransomware, and phishing attacks.
The ASD Essential Eight framework is relevant to a wide range of organisations, including government agencies, businesses, educational institutions, and non-profits. Any organisation that handles sensitive information or relies on digital systems to conduct business can benefit from implementing the Essential Eight strategies.
Organisations can implement the Essential Eight framework by assessing their current cybersecurity posture, identifying gaps and areas for improvement, and then systematically implementing the eight mitigation strategies outlined in the framework. This may involve deploying security controls, configuring systems, educating staff, and monitoring for compliance.
Implementing the Essential Eight framework can help organisations to strengthen their cybersecurity defenses, reduce the risk of security breaches and data loss, enhance regulatory compliance, improve incident response capabilities, and protect their reputation and brand.
While compliance with the ASD Essential Eight framework is not mandatory, it is highly recommended for organisations looking to improve their cybersecurity posture and protect against cyber threats effectively. Many government agencies and industry regulators also require compliance with the Essential Eight as part of their cybersecurity requirements.
Organisations should regularly review and update their implementation of the Essential Eight framework to ensure it remains effective against evolving cyber threats and changes in their operating environment. This may involve conducting regular security assessments, performing risk assessments, and staying informed about emerging threats and best practices in cybersecurity.
Set up a time to discuss Crayon Services
Register your details to book a time to speak to one of our experts on how Crayon Services can help you.
Thanks for contacting Crayon. A team member will reach out to you soon.
Related Read
Blogs
Microsoft Security SPD
In the first of a 3-part series, Michael Brooke explains why the buying signals from the market make Security SPD attainment worth a close look for partners.
Training
Project Online Retirement
The sun is setting on Microsoft Project Online, with Microsoft announcing it will be fully retired on September 30, 2026. Get the need-to-know information to plan for this change and position alternatives with your customers.
Press Release
Nitro Partner Awards 2026: Crayon earns multiple honours
Crayon wins 2026 Nitro APAC Reseller of the Year, with team leaders honoured for supporting partners and accelerating digital document adoption.
Press Release
CRN Asia Channel Leaders
Crayon's Warren Nolan and Harith Ramotheram have earned recognition in the 2026 CRN Asia Channel Leaders list for driving partner growth and innovation in our region.
Blogs
Copilot for All
Learn how Microsoft’s strategic Copilot for All framework combines with Crayon’s inhouse AI expertise to drive practice development and revenue growth for partners.
On Demand Webinars
Data Protection Webinar
Watch the on‑demand webinar on turning data risk into revenue. Learn how partners use data protection maturity models to drive recurring revenue and customer trust.
On Demand Webinars
Accelerate Your Security Practice with Microsoft SPD
Join our team for a business and technical deep dive into the Microsoft Security SPD and why attaining it is great for business.
Business
AvePoint Partner onboarding content
AvePoint Partner onboarding content packs are now available from Crayon to help fast track confidence and success for your team.
On Demand Webinars
Copilot Partners: Unlock your opportunities
Our latest On-Demand webinar provides a practical, execution focused walk through the full Copilot partner journey, from early adoption to advanced scenarios.
Training
Modern Work Solution Partner Designations Webinar
In our latest webinar, our in-house Modern Work experts Jye Wong and Ksenia Turner will run you through a practical refresher on Solution Partner Designations; what they are, why they matter and how to get started.
Guides and eBooks
Data Protection Playbook #3
As SMBs mature in the Data Protection lifecycle, they need help to optimise spend, reduce the compliance burden and ensure results align to business objectives. The third installment of our Data Protection Playbook series provides practical guidance for partners on how to address emerging pressure and connect ongoing investment to measurable business value.
Training
Copilot Agents: Level up from chatbots
Copilot Agents: what are they and how do they differ from AI assistants and chatbots? Our in-house Copilot expert Ksenia Turner explains the use cases and service opportunities for partners.
Blogs
Proving Data Protection Compliance
Fragmented data protection systems and processes create compliance proof-gaps for SMB customers. Scott Hagenus, Director, Cybersecurity here at Crayon explains.
Guides and eBooks
Data Protection Playbook #2
How can partners help their SMB customers to move from silos of security and continuity to a more cohesive, measurable and insurable data protection framework? The second edition in our Data Protection Playbook series maps out their journey, and yours.
Blogs
Data Protection Partner Playbooks for SMB Customers
As cybersecurity and continuity converge in platforms and in practice, partners need new playbooks to address modern Data Protection standards. Our in-house cybersecurity pre-sales lead, Michael Brooke explains why.
Insights
Data Protection Resource Round-Up
Data Protection priorities are shifting for SMBs. Ramp up your ability to respond with curated insights, articles and resources to help you guide every customer conversation with confidence.
Insights
M365 Copilot Hub
All the latest insights, articles and resources on M365 Copilot, curated into one place.
Partner Spotlight
Crayon Expertise: Why Bigfish is hooked
Bigfish Technology saved AU$20,000 on its annual Microsoft licensing after one call with Crayon and has since built a strong partnership that enabled Bigfish to get access to Crayon’s expertise and vendor ecosystem.
Blogs
Data Protection for SMBs
From rethinking backup to governance frameworks and behavioural analytics, what's involved in building a complete Data Protection strategy for SMB customers?
Insights
Microsoft’s Channel Evolution
We explore the evolution of Microsoft's channel strategy over the past ten years, and what can be learned by viewing it through a Value Cycle lens.
Guides and eBooks
The Microsoft Fabric Partner Guide
The Microsoft Fabric Partner Guide curates our recent articles, videos and resources to accelerate Crayon partner learning.
Insights
Cybersecurity Resource Round-up
Support your cybersecurity game plans with our top picks of new and updated risk and resilience resources.
Webinars Series
Microsoft Security Workshops
Blogs
Cloud Security Assessments are a Growth Opportunity
Crayon cloud security assessments help partners lock down M365 and Azure environments and build profitable cybersecurity practices. Learn how.
