The Cyber Essentials scheme was created by both the UK Government and the industry to help design a basic set of requirements that all businesses could apply with limited experience of cyber security. Businesses that work to apply those requirements can then publicly demonstrate their commitment to cyber security via the certification.

The process of achieving this certification has been designed to be as easy as possible to achieve while ensuring that best practices are in place as well as affordable. It has been proven to show that companies that have the certification can mitigate up to 80% of known cyber threats.

How does it work?

The scheme is based upon a set of five security controls which, when correctly deployed, will provide you with a level of protection from the most common cyber security threats. These controls apply to a defined scope, which could be part or all of your company, depending upon your needs.

By ensuring that your boundary firewalls are configured to only allow authorised inbound and outbound traffic, will help to effectively protect your business against cyber threats.

By ensuring that security controls have been agreed upon and put in place when installing computers and mobile/network devices, will help ensure that configurations in default settings are reduced.

Making sure that user accounts are configured with the level of access that is needed will help reduce network-wide threats. Using least privilege access should be applied to all accounts.

Making sure proper malware protection is in place on all devices will help you protect your business against cyber threats such as ransomware and viruses which may run throughout the network.

Keeping your software up to date with the latest security updates is important as well as helping to reduce the changes of devices being compromised.

Why go with InfoSec Governance?

InfoSec Governance will work with you to help you answer any questions or concerns with passing Cyber Essentials. InfoSec Governance’s consultants will assessment certify your business quickly as soon as you’ve submitted your results. InfoSec Governance consultants have worked with and helped a wide range of customers who are all happy and certified.

How much does it cost?

If you would like to achieve the basic self-assessment version of Cyber Essentials yourself without any support the pricing will be as follows.

Type of organisation Cost
Micro organisations (0-9 employees) £300+VAT
Small organisations (10-49 employees) £400+VAT
Medium organisations (50-249 employees) £450+VAT
Large organisations (250+ employees) £500+VAT

If you would like some support, please get in touch with us to see how we can help you and how much support you would require.

Frequently Asked Questions