Cyber Essentials Accreditation

Get accredited with the government-backed Cyber Essentials scheme to improve your cyber security management, enhance your reputation and improve your tender opportunities.

Get Cyber Essentials accredited now

Cyber Essentials

Cyber Attack (Photo by Askhat on stock_adobe_com)-2

Improve your Cyber Security

Cyber Essentials covers a set of basic controls which are designed to ensure businesses keep their data secure. According to the UK government, a Cyber Essentials certification improves your business’ protection against 80% of the most common cyber attacks.

Build trust and credibility

The Cyber Essentials trust badge shows your compliance and dedication to cyber security, which can help to build trust and confidence amongst customers, suppliers, investors and other partners. It can also help reduce your cyber-protection insurance.

Book a Consultation

Why Should You Get Cyber Essentials Accredited?

Features

Government-backed scheme

Designed to ensure good practices in information security

Covers a set of basic controls

To ensure businesses keep their data secure

Updated in 2022

To cover remote working and multi-factor authentication

Cyber Essentials Trust Badge

The PC Support Group is an IT provider with the Cyber Essentials trust badge

Benefits

Trust and Confidence

Build trust and confidence with customers, suppliers, investors and other partners by displaying the Cyber Essentials trust badge

Secure Partnerships

Create secure partnerships with partners - it is also a useful standard for companies to check for when working with potential partners when data is involved

Reduces risk

Getting accredited dramatically reduces the risks of a cyber security breach (by up to 80%)

Requirements

Many tenders (particularly in the public sector) require Cyber Essentials

Free Cyber Insurance

Businesses that comply with Cyber Essentials may be eligible for free cyber insurance cover

The PC Support Group has been our IT support partner of choice for over a decade and their approach to data protection and cyber security is second to none. As cyber-criminals adapt and change their approach, The PC Support Group proactively advises us and keeps us ahead of the curve by introducing new technology and processes. Implementing the Government-backed Cyber Essentials process with The PC Support Group has been central to that – I’d recommend it to any business that is serious about keeping its data safe.

Mark Whittle, Finance Manager - Influential

Protect, React, Recover: A Guide to Cyber Resilience for SMEs.

Check out our guide to find out more about the Cyber Essentials scheme and how it can benefit your business.

To better defend your business from cyber criminals and to be prepared in the event of a disaster, download our free ebook, Protect, React, Recover: A Guide to Cyber Resilience for SMEs.

Within this comprehensive guide, you’ll find a range of information to help you understand the world of cyber security and how it impacts your business.

Learn More

FAQs

What is Cyber Essentials?

Cyber Essentials is a UK government-backed certification scheme that helps businesses protect themselves from common cyber threats. It's an independently verified self-assessment that creates a baseline for cybersecurity, assessing five simple yet effective security measures: firewalls, secure configuration, security update management, malware protection, and user access control. The scheme was launched by the UK government and the National Cyber Security Centre (NCSC) to promote good cybersecurity practices among organisations.

Learn more about Cyber Essentials.

How do I get certified in Cyber Essentials Plus?

To get certified in Cyber Essentials Plus, you must first obtain the basic Cyber Essentials certification. Then, you need to undergo a technical audit conducted by an external certifying body, which includes on-site or remote audits and vulnerability scans. If any issues are identified, they must be addressed before certification is granted. Once all requirements are met, you will receive the Cyber Essentials Plus certificate, valid for one year. It must be completed within 3 months of achieving Cyber Essentials accreditation.

Learn more about Cyber Essentials Plus.

What is the difference between Cyber Essentials and Cyber Essentials Plus?

Cyber Essentials is the entry-level certification that involves a self-assessment questionnaire reviewed by a certifying body. Cyber Essentials Plus is a higher-level certification that builds upon Cyber Essentials by including an independent audit. This audit involves technical expert verification of systems, vulnerability scans, simulated attacks, and cloud security checks to ensure the effectiveness of security measures in practice. Essentially, Cyber Essentials is self-assessed, while Cyber Essentials Plus is independently audited and tested.

Learn more about Cyber Essentials vs Cyber Essentials Plus.

What are the five key security controls of Cyber Essentials?

The five key security controls of Cyber Essentials are:

1. Firewalls: To block unauthorised access to your systems.
2. Secure Configuration: Ensuring devices and software are optimised for security, including changing default passwords and disabling unused services.
3. Security Update Management: Keeping all devices, apps, and operating systems up to date to close security loopholes.
4. Malware Protection: Using antivirus or anti-malware tools on all devices and ensuring they are maintained.
5. User Access Control: Granting employees access only to the data and tools they need for their job and restricting administrative rights.

You can read more about Cyber Essentials Checklist & Requirements.

What is ISO 27001, and how does it differ from Cyber Essentials?

ISO 27001 is the international standard for information security, focusing on establishing an Information Security Management System (ISMS) to manage security risks. It covers all areas of information security, including IT and non-IT, and involves conducting risk assessments, establishing security policies, and continuously monitoring security practices. Cyber Essentials, on the other hand, focuses specifically on IT infrastructure and common cyber threats, aiming for basic security controls. ISO 27001 is more comprehensive, internationally recognised, and better suited for larger or global organisations, while Cyber Essentials is simpler and designed for SMEs.

Learn more about Cyber Essentials vs ISO 27001.

What is the NIS2 Directive?

The NIS2 Directive is an EU mandate aimed at strengthening cybersecurity within critical services and digital infrastructure. It applies mainly to operators of essential services like energy, healthcare, and finance, as well as large digital service providers, including UK organisations working within the EU. Compliance involves conducting risk assessments, developing incident response plans, and maintaining continuous system monitoring. It's not a certifiable accreditation but creates legal obligations that businesses must follow.

Learn more about cyber security accreditations.

Get The Cyber Essentials Certification

Ready to get accredited and start taking the steps to a more secure business? Set up a free, no-obligation discovery call with our cyber security experts to learn more about Cyber Essentials and how we can help you get certified.

Sign up to our newsletter

Get the latest news, IT advice and security tips directly to your inbox. Enter your email and stay up to date.