Skip to content

Cyber Essentials

Don't leave your organisation vulnerable to cyber attacks. Cyber Essentials fortifies your systems and processes, demonstrating commitment to a secure online environment for clients and stakeholders.

Can you afford to put your business on the line? Protect yourself from hostile actors today, from as little as £200 + VAT.

Cyber Essentials Logos

Cyber Essentials or Cyber Essentials Plus: what does your business need

  • Foundation level certification for cybersecurity.
  • Provides a robust shield against common cyber threats.
  • Ensures necessary controls are in place to mitigate risks.
  • Equips organisations with essential cybersecurity measures.
  • Helps protect valuable data, sensitive information, and maintain customer trust.
  • Demonstrates commitment to safeguarding against cyber attacks.
  • Offers a competitive edge by assuring clients and partners of their security.
  • Serves as a statement of dedication to foundational cybersecurity.
  • The ultimate certification level in the Cyber Essentials scheme.
  • Comprehensive test conducted by cybersecurity experts.
  • Ensures protection against sophisticated cyber attacks.
  • Increases confidence in organisation-wide information protection.
  • Handles the ever-evolving landscape of cyber threats.
  • Indicates proactive measures towards digital operation security and integrity.
  • Demonstrates commitment to maintaining a secure online environment.

What does Cyber Essentials cover?

Within the Cyber Essentials scheme, there are five control categories which cover the five most-prominent cyber risks that affect organisations. These controls include the following:

A firewall should be in place between the Internet and your organisation’s internal network. This firewall should be securely configured and be reviewed regularly.

Devices and software should be configured securely to prevent them from being compromised by a malicious user or malware. Default passwords should be changed, and all passwords should be suitably complex to prevent them from being guessed. All unnecessary software should be removed from end-user devices.

Access to your organisation’s data should be controlled through correctly assigned user accounts. Administration privileges should be tightly controlled, and administrative rights should only be granted to users who have a genuine, business need for this level of access.

A robust anti-malware solution should be applied to prevent servers and end-user devices from being infected with malicious software. Cyber Essentials allows this to be achieved through conventional anti-virus software, application white-listing or by running applications in “sandboxed” environments.

All security updates and patches should be applied to devices and installed software. This ensures that security vulnerabilities are fixed and reduces the likelihood of devices and applications being compromised by a malicious user or malware.

The assessment process includes an online questionnaire which captures information to demonstrate that the five controls are in place. Once the questionnaire has been submitted, we will examine the responses to ensure that these are line with the list of requirements produced by the NCSC (National Cyber Security Centre). If successful, you will be awarded Cyber Essentials certification. This takes roughly 36-48 hours.

What are the benefits of Cyber Essentials certification?

brand-element-horizontal

Being Cyber Essentials certified demonstrates that your organisation has a fundamental understanding of cyber security. Cyber Essentials is a requirement for many Government contracts, being Cyber Essentials certified increases your eligibility to tender for sales into UK government departments.

Once you’re certified, we will provide you with a toolkit so you can use the logo on your website and company collateral – this is a great way to show your customers that you are a safe and secure organisation to work with.

Cyber Essentials - Which certification do you require?
Please refer to timeline below

You have 90 days from the issue date of the CE basic certificate to complete the CE Plus process.

Cyber Essentials Timeline
 

Protect your business today

Starting from £200 + VAT

Back to CS & IA Services
Get in touch