Cyber Essentials certification
PROVE to customers that your organisation always takes cyber security seriously
GAIN business by demonstrating supply chain risks are mitigated with Cyber Essentials
KEEP AHEAD of emerging cyber threats with the latest iteration of the UK government’s technical standard
FREE INSURANCE against a cyber attack included with Cyber Essentials (if your turnover is below £20m)
What is Cyber Essentials?
Cyber Essentials is a UK certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification.
Cyber Essentials is backed by the UK government and overseen by the National Cyber Security Centre (NCSC).
It encourages organisations to adopt good practices in information security.
Cyber Essentials also includes an assurance framework and a simple set of security controls to protect information from threats coming from the internet.
Cyber Essentials - the Five Key Controls
To achieve Cyber Essentials certification, organisations are required to fulfull the Cyber Essentials Requirements v3.1. The Cyber Essentials requirements are organised around the Five Controls themes:
1 - Firewalls and routers
Only necessary access from the internet
2 - Secure Configuration
Change default passwords & Remove The Uncessary
3 - Security Update Management
Minimise your attack surface by keeping up to date
4 - User Access Control
Follow the principle of least privilege
5 - Malware Protection
Configure anti-malware & allow only approved software
Next Steps
1) Purchase the appropriately sized Cyber Essentials certification (number of employees).
2) Download the self-assessment
3) Prepare the answers for your organisation, completing all questions.
4) Upload to Cyber Attack Ltd for a pre-submission review.
5) Make the adjustments to your controls or policies as appropriate.
6) When you are ready, you’ll be sent the portal details to complete the online assessment.
Cyber Essentials Downloads
Cyber Essentials Questions and Requirements standard
PDF Booklet
Handy for printing and reading
Excel Spreadsheet
Handy for data entry and pre-submission checks
The technical standard
Handy for getting in down in to the weeds
Cyber Essentials cost
Cyber Essentials certification is based on the information that you provide during the self-assessment.
This information is then verified and assessed by an official certification body such as Cyber Attack Ltd.
Cyber Essentials cost depends on the number of employees.
Cyber Essentials operates through a self-assessment questionnaire.
Organisations respond to a set of questions that cover the assessment’s scope.
Answers are judged on five key controls: user access management, secure configuration, security updates, firewalls and routers, and malware protection.
A board member or equivalent must approve the responses, before submitting to Cyber Attack for marking the assessment.
0-9 Employees
£320 + VAT
50-249 Employees
£500 + VAT
10-49 Employees
£420 + VAT
250+ Employees
£600 + VAT
Cyber Essentials cost depends on the number of employees.
Cyber Essentials operates through a self-assessment questionnaire.
Organisations respond to a set of questions that cover the assessment’s scope.
Answers are judged on five key controls: user access management, secure configuration, security updates, firewalls and routers, and malware protection.
A board member or equivalent must approve the responses, before submitting to Cyber Attack for marking the assessment.