Products

Choose your Cyber Essentials product

Cyber Essentials Online

Cyber Essentials

£300 excl. VAT / year
  • Access to the online self-assessment questionnaire
  • Includes certificate and Cyber Essentials branding for your business
  • Provides 12 months’ certification upon successful application
More info
Cyber Essentials Online

Cyber Essentials Fast Track

£600 excl. VAT / year
  • Fast Track application service get assessed within 2 Business Days
  • Access to the online self-assessment questionnaire
  • Inclusive support and advice throughout application process
  • No additional costs for retests or Gap Analysis
  • Includes certificate and Cyber Essentials branding for your business
  • Provides 12 months’ certification upon successful application
* Office hours are based on UK working time 9am-5pm Monday -Thursday and 9am-2pm on Fridays. Fast Track applications made outwith these times cannot be guaranteed for a 2 business day turnaround.The fast track service guarantee will not apply to any submissions which are deemed to be incomplete or which require further clarifications during the assessment process.
More info
Cyber Essentials Online

Cyber Essentials Plus

£2500 excl. VAT / year
  • Required for MOD contracts where the risk is "Low", "Moderate" or "High"
  • The price includes expedited remedial assessments if required
  • Access to the online self-assessment questionnaire
  • Inclusive support and advice throughout application process
  • On Site assessment and vulnerability test
  • Price includes all travel and expenses within the UK. Additional Costs will be quoted for International orders.
  • Includes certificate and Cyber Essentials branding for your business
  • Provides 12 months’ certification upon successful application
* Office hours are based on UK working time 9am-5pm Monday -Thursday and 9am-2pm on Fridays. Fast Track applications made outwith these times cannot be guaranteed for a 2 business day turnaround.The fast track service guarantee will not apply to any submissions which are deemed to be incomplete or which require further clarifications during the assessment process.
More info

Choosing the perfect cyber security product

Becoming cyber security compliant with a cyber security solution is now a standard part of the public procurement process and central to supplier selection. More information is available in this document – Procurement Policy Note 09/14: Cyber Essentials scheme certification.

Being certified compliant with Cyber Essentials demonstrates to your clients and industry partners that your organisation holds itself to a high standard of cyber security, and that you maintain a strict stance on cyber security in accordance with the UK’s National Cyber Security Programme.

So, if you haven’t already joined the Cyber Essentials scheme, then now is the time to do so. Please find below the options available for your business.

What’s the difference between Cyber Essentials and Cyber Essentials Plus?

The complete Cyber Essentials scheme is made up of two progressive stages – Cyber Essentials and Cyber Essentials Plus.

Cyber Essentials is the first stage and is a foundation level certification that provides a clear statement of the basic controls your organisation should have in place to mitigate the risk from common cyber threats.

Cyber Essentials Plus is the second stage, and is a more rigorous test of your organisation’s cyber security systems where our cyber security experts carry out on-site vulnerability tests to ensure that your organisation is protected against basic hacking and phishing attacks.

The level of testing required for Cyber Essentials Plus is more stringent than the testing carried out through the Cyber Essentials self-certification. Cyber Essentials Plus assessment involves two key additional elements:

  • On-Site Assessment – The on-site assessment is a requirement for all companies wishing to achieve Cyber Essentials Plus. Our team will visit your office(s) and thoroughly check whether the solutions you have put in place comply with the control requirements. You can find out the control requirements here.
  • Internal Vulnerability Scan – An internal vulnerability scan is a requirement for all companies wishing to achieve Cyber Essentials Plus. It involves a scan of your internal networks within the scope of your application, with a focus on workstations and mobile devices. It aims to find out whether the Cyber Essentials controls have been properly implemented and to check that known vulnerabilities have been addressed.

The difference between the two is the on-site vulnerability tests that are carried out for Cyber Essentials Plus certification. All organisations seeking certification must complete the first stage (Cyber Essentials), but some organisations, depending on their structure and the severity of the risks they face, will need to complete Cyber Essentials Plus.

Cyber Essentials Plus is commonly seen as the demonstration of an organisation’s IT maturity. We would recommend Cyber Essentials Plus if your organisation has over 250 members of staff, each with one or more connected devices. Completing the certification allows you to display the official Cyber Essentials Plus badge.