Cyber Essentials Plus

Cyber Essentials Plus involves both internal and external tests of your network and computers. It will involve a visit to your site/a remote audit and gives more assurance that you are complying with the Cyber Essentials Scheme than the basic self assessment level.

You will need to complete your Cyber Essentials Plus audit within 3 months of your last Cyber Essentials basic certification. Both these can also be completed at the same time.

What is involved?

The key elements of a Cyber Essentials Plus audit can be summarised as follows:

  • An assessor will pick a sample of computers at your organisation and perform an audit to ensure that the devices are configured as per the scheme.
  • A vulnerability scan will be performed on these machines to confirm patching and basic configuration is at an acceptable level
  • An external port scan of your internet facing IP addresses will be conducted to ensure no clear and obvious misconfigurations or vulnerabilities can be identified.
  • A test will be conducted on your default email/internet browser to confirm how well configured they are to prevent execution of fake malicious files.
  • Screenshots will be taken as evidence that the system is Cyber Essentials Plus compliant.

Cyber Essentials Plus

Cyber Essentials Plus involves both internal and external tests of your network and computers. It will involve a visit to your site/a remote audit and gives more assurance that you are complying with the Cyber Essentials Scheme than the basic self assessment level.

You will need to complete your Cyber Essentials Plus audit within 3 months of your last Cyber Essentials basic certification. Both these can also be completed at the same time.

Questions?

Please feel free to email any questions to us at info@cybercompliance.org.uk or via the Live Chat.

Cyber Essentials Requirements

Download the Requirements for IT Infrastructure

Cyber Essentials: Requirements for IT infrastructure v3.1

Download

Elevate Your Cyber Security with Cyber Essentials Plus

Advance Your Protection with Cyber Essentials Plus

Upgrade your business's cyber security measures to the next level with Cyber Essentials Plus. This enhanced certification goes beyond the foundational Cyber Essentials scheme by offering a deeper, hands-on verification of your cyber security controls, ensuring that you're not just compliant on paper but in practice too.

Pricing Structure Tailored to Your Business Needs:

  • Micro (1-9 Employees)
  • Small (10-49 Employees)
  • Medium (50-249 Employees)
  • Large (250+ Employees)

With Cyber Essentials Plus, your organisation can demonstrate a higher level of commitment to protecting against cyber threats, providing further reassurance to clients, partners, and stakeholders.

Why Cyber Essentials Plus?

In-Depth Security Checks
Cyber Essentials Plus provides a detailed assessment of your network and systems, including vulnerability scans, to ensure that your cyber defences are robust and effective against a wide array of cyber threats.

Increased Client Confidence
Achieving Cyber Essentials Plus certification showcases to your clients and partners that you have undergone a rigorous verification process, enhancing trust and confidence in your business.

Competitive Advantage
In an increasingly digital marketplace, Cyber Essentials Plus gives you a competitive edge, especially when tendering for contracts where a higher level of cyber security is required.

Comprehensive Cyber Security
The certification process covers all aspects of your IT infrastructure, offering a comprehensive approach to securing your devices, applications, and networks against cyber attacks.

The Cyber Essentials Plus Certification Process

Upon opting for Cyber Essentials Plus, your business will undergo a detailed audit, including:

  • On-site Vulnerability Assessment: A thorough examination of your IT systems to identify any vulnerabilities.
  • External Network Testing: Simulated cyber attacks to test the strength of your cyber defences.
  • Comprehensive Review: An evaluation of your cyber security practices, ensuring they meet the requirements of Cyber Essentials Plus.

Achieving and Maintaining Certification:

Successfully completing the Cyber Essentials Plus certification process signifies that your business has implemented high-level security measures to protect against cyber threats. To maintain certification, regular reviews and updates to your cyber security practices are encouraged, ensuring ongoing protection in the rapidly evolving digital landscape.

Ready to Enhance Your Cyber Security?

Take the next step in securing your business against advanced cyber threats with Cyber Essentials Plus. For more information on the certification process or to start your journey to enhanced protection, add Cyber Essentials Plus to your cart today or reach out to us at info@cybercompliance.org.uk.