Cyber Essentials Logo Small | Solutions 4 IT

WHAT IS CYBER ESSENTIALS PLUS?

Reassure customers that you are working to secure your IT against cyber attacks.

“CyberSecurity is much more than a matter of IT

Statistic Source: GOV.UK

Cyber criminals don’t just target large corporations – more often they target smaller businesses, exploiting any weaknesses in IT security, infrastructure and software.

Get protected, Get certified…

Safeguard Your Company By Having The Correct Security Controls In Place.

Cyber Essentials Plus is an audited technical process that will safeguard your business and ensure that you are complaint with the latest government Cyber Security advice. This will involve a hands-on vulnerability assessment that will take an in depth look at the technical security of your IT and will follow with a consultation to discuss any areas that may need to be addressed. 

You will need to have a valid Cyber Essentials certification within the last 2 months to be eligible for Cyber Essentials Plus. 

We can provide a pre assessment ‘Get Ready’ package where we go through a gap analysis of your IT and advise of any issues that may need to be addressed. 

E

Peace of mind that your defences will protect against most of the common cyber-attacks.

E

Increased confidence with customers as it shows you take cybersecurity seriously.

E

Bid for Government, Ministry of Defence and NHS contracts.

E

Reduce your insurance premiums by reducing your exposure to Cyber Threats.

E

Stand out from the competition, retain, and win more business.

Steps to certification with our

Cyber Essentials Plus Package

Z

1. Confirm

You will need to provide your existing Cyber Essentials certification; this will need have been issued within the last 2 months. If you do not have a certification, we will need to certify you first. 

l

2. Complete

We will send you an application that will detail what information we will require so that we can plan your assessment. We will also complete a pre-audit assessment with you to confirm your readiness.

h

3. Audit

Once we have all the information required and a date has been scheduled, we perform the internal and external vulnerability scans and contact nominated staff members.

4. Certification

We will advise the same day if the audit was a success or if any remediation needs to be completed.  

}

5. Renewal

The certification is valid for 12 months and will need to be renewed, we will contact you before this date to discuss.

Choosing the right package

To Become Cyber Secure

CYBER ESSENTIALS PLUS PACKAGE

REQUEST FURTHER INFORMATION ON CYBER ESSENTIALS PLUS PACKAGES

Choose Your Package

11 + 12 =

Cyber Security FAQ

Cyber criminals don’t just target large corporations – more often they target smaller businesses, exploiting any weaknesses in IT security, infrastructure and software.

Why Should we get Cyber Essentials Plus Certified?

Becoming Cyber Essentials Plus certified confirms you have been independently audited against the Cyber Essentials Plus standard.

Being Cyber Essentials Plus certified confirms to others you are addressing cybersecurity effectively and mitigating the risk from internet-based threats and have met the standards set by the Cyber Essentials scheme. Certification will give assurance to stakeholders that you demonstrate compliance to the FIVE key controls, protecting your organisation against cyber threats and this reassurance may help with winning new business, while also safeguarding your current business.

Key Benefits of Cyber Essentials Plus Certification?

Protects your Business against the majority of common cyberattacks and demonstrates to stakeholders your commitment to keeping their data secure and your business operational. This can increase business retention and attract new business.

Increases the level of security of your systems and data, and puts processes in place to ensure this level continues – if not improves year on year. This helps to drive business efficiencies which in turn improves productivity through streamlined processes, reducing operational costs.

Allows you to work on UK government contracts that involve the handling of personal and sensitive information.

Reduces your insurance premiums by being able to prove your Business has increased its resilience to cyber threats.

Should I choose cyber essentials or cyber essentials plus?

This depends on the needs of your organisation, and also why you are putting it in place. For example if you are looking to work with the public sector on government contracts then they will ask for Cyber Essentials as a minimum. If you want to demonstrate that your organisation is compliant with cybersecurity and takes data protection seriously, then you may also want to achieve Cyber Essentials Plus certification.

How do I get cyber essentials plus certified?

Become Cyber Essentials Plus certified through these simple steps:

  1. Order Cyber Essentials Plus certification through our website.
  2. One of our CE Auditors will contact you and talk you through the requirements and answer any questions for you.
  3. Complete the provided documentation, our auditor will then schedule and complete your audit.
  4. If you are successful you will be issued with cyber essentials plus certification.
Where can I get details on the full requirements of the cyber essentials scheme?

Further details on Cyber Essentials and the Cyber Essentials Plus scheme can be found at the  National Cyber Security Centre website.

Can I get the self-assessment questions before I pay for an assessment?

Yes, you can download a copy from the IASME website here, and further guidance is available from the National Cyber Security Centre here.

How is the Cyber Essentials Plus assessment verified?

It is the same checks as the Cyber Essentials scope but also requires a technical audit of the systems. This includes a representative set of user devices, all internet gateways, and all servers with services accessible to unauthenticated internet users.

If you have achieved the basic level Cyber Essentials certification less than 2 months before certifying to Cyber Essentials Plus and nothing has changed you will not need to repeat the self-assessment questions stage.

Our assessor will check that you still meet the FIVE security requirements of Cyber Essentials before proceeding with Cyber Essentials Plus certification. If you don’t currently have Cyber Essentials then this question set will need to be submitted as well, and our auditor will then evaluate that against the requirements as well as completing the technical audit, assuming you meet the requirements for the self-assessment questionnaire and the technical audit, you will be awarded Cyber Essential Plus.

Who is IASME?

IASME is the chosen organisation by the National Cyber Security Centre (NCSC) to take over full responsibility for Cyber Essentials delivery and become the Cyber Essentials Partner with the NCSC.

IASME also deliver the IASME Governance standard which allows smaller companies in a supply chain to demonstrate their level of cybersecurity cost-effectively to show that they are taking the steps to properly protect their customers information. Solutions 4 IT are a Certification Body for IASME for Cyber Essentials, Cyber Essentials Plus and IASME Governance.

If we fail will we get feedback about why we failed?

We will supply a report with the assessor feedback and any required remediation. You will then have 30 days to make the required changes.

Latest Cyber Security News

Cyber EssentialsCyber Security
Why IT security is important

Why IT security is important

IT security, also known as Cyber Security, is important in order to protect and defend all categories of data against cyber criminals. Their aim is to steal your information and compromise it in order to gain profit or put your business at risk. These cyber criminals are only getting smarter and more tactical, slowly becoming more resilient to several cyber defence methods.

Read Article

CloudCyber SecurityEmailsRemote Working
2021 email security trends that could put your business at risk of cyber attacks

2021 email security trends that could put your business at risk of cyber attacks

Ever since COVID-19, there has been a significant shift in how businesses are operating. Majority of the global workforce is still continuing to work from home – a trend that is likely to stay for quite some time. One of the most popular ways that businesses are staying in touch with one another is through email. This has posed several cyber security risks that all businesses are a potential target of. 

Read Article

Cyber EssentialsCyber Security
Why IT security is important

Why IT security is important

IT security, also known as Cyber Security, is important in order to protect and defend all categories of data against cyber criminals. Their aim is to steal your information and compromise it in order to gain profit or put your business at risk. These cyber criminals are only getting smarter and more tactical, slowly becoming more resilient to several cyber defence methods.

Read Article