Product Type

Cyber Essentials

Cyber Essentials


What is Cyber Essentials?


Cyber Essentials is a Government-backed, industry supported foundation for basic cyber security hygiene. The Scheme has been carefully designed to guide organisations of any size in protecting themselves against cyber threats. It covers five main technical controls, which are:


  • Limiting Internet access to secure and necessary network services (firewalls)
  • Configuring devices to reduce vulnerabilities (secure configuration)
  • Keeping your devices and software up to date (security update management)
  • Provide only the required access to authorised individuals (user access control)
  • Restrict execution of known malware and untrusted software (malware protection)

What is the difference between Cyber Essentials and Cyber Essentials Plus?


The scheme offers two levels of certification:


  1. Cyber Essentials is self-assessed and independently verified.
  2. Cyber Essentials Plus requires an independent technical audit.


Cyber Essentials is a self-assessment, designed to give you protection against a wide variety of the most common cyber attacks. A board member from your organisation signs a declaration to confirm that the assessment answers are true and a qualified assessor then evaluates the responses.


Cyber Essentials Plus requires the same technical controls, but a hands-on technical verification is also carried out. This certification provides a greater level of assurance following successful completion of external vulnerability testing. Cyber Essentials Plus must be completed within 3 months of successful verification of a self-assessment.


If you would like to discuss the best option for your organisation, please contact us.