FAQs

Do certificates have an expiry date?
All new certificates issued will have a 12-month expiry date.
How much does it cost to get Cyber Essentials certification?
The cost of Cyber Essentials (verified self-assessment) follows a tiered pricing structure which adopts the internationally recognised definition for micro, small, medium and large enterprises:
- Micro organisations (0-9 employees): £300 + VAT
- Small organisations (10-49 employees): £400 + VAT
- Medium organisations (50-249 employees): £450 + VAT
- Large organisations (250+ employees): £500 + VAT

We offer fixed price packages for Cyber Essentials Plus depending on the number of employees within your organisation.
My organisation is not based in the UK. Can I still obtain Cyber Essentials certification?
Yes, organisations overseas are able to get certificates.
Do I have to obtain the first level of Cyber Essentials before going on to Cyber Essentials Plus?
You need to complete the online Cyber Essentials assessment as part of the Cyber Essentials Plus certification, and this must be completed prior to the Cyber Essentials Plus assessment. Alternatively, you can complete your Cyber Essentials Plus assessment within 3 months of your last Cyber Essentials certification.
How are Cyber Essentials assessments verified?
A board member from the organisation signs a declaration to confirm that the assessment answers are true. One of our qualified assessors then evaluates the responses. If you pass, you receive a certificate, logo pack and are added to the searchable database of Cyber Essentials certified organisations. If you fail, you will receive feedback on areas that need improvement.
How quickly can I get certified to Cyber Essentials?
Cyber Compliance aims to return the Cyber Essentials assessment results to organisations as quickly as possible, usually within 1 - 3 working days from submission. For tight deadlines, contact Cyber Assurance via the Contact Form or Live chat to inquire about fast-tracking assessments.
Do I need Cyber Essentials to bid for a Government contract?
Some Government contracts may require Cyber Essentials certification. Confirm with the respective Government department for specific requirements and exemptions.
How do I check if an organisation holds a valid Cyber Essentials certificate?
Use the Cyber Essentials Certificate search on the IASME website to find organisations with a valid certificate issued in the last 12 months: https://iasme.co.uk/certified-organisations/
Why should we get a Cyber Essentials certificate?
The scheme sets out five basic security controls to protect organisations against around 80% of common cyber attacks, allowing you to focus on your core business objectives. Benefits of the Cyber Essentials scheme include reassuring customers that you take cyber security seriously, attracting new business, and demonstrating commitment to cyber security. It is essential for government contracts and includes cyber liability insurance for eligible organisations.
What is required for certification to Cyber Essentials?
Organisations complete the self-assessment questionnaire (SAQ), which must be verified by a board member or equivalent and independently verified by a certified body against the government's Cyber Essentials scheme.
What is required for certification to Cyber Essentials Plus?
Cyber Essentials Plus involves a more advanced level of assurance, including a technical audit, on-site or remote assessment, internal vulnerability scans, and an external vulnerability scan conducted by the certification body.
Where can we display our Cyber Essentials certificate?
After passing the Cyber Essentials application, you can display the badge on websites, promotional material, letterheads, and email signatures. Guidance for displaying the certification mark is provided on the portal for authorised organisations.
How do we renew our Cyber Essentials certificate?
Certificates issued under the Cyber Essentials scheme have a 12-month expiry. Recertification is like an annual MOT for your cyber security controls. Certifications are annual subscriptions and auto-renew. Failure to recertify results in removal from the directory of organisations awarded Cyber Essentials certification.

Any Questions?

Please feel free to email any questions to us at info@cybercompliance.org.uk or via the Live Chat.