What is Cyber Essentials Plus?

There are two main cyber security accreditations under the Cyber Essentials government-backed scheme:

When we work and speak with our clients, one of the first things that we try to establish is how well their business is protected against some of the most common types of cyber threats. We will also consider the risk and ways that cyber attackers will attempt to breach that client. This will differ from industry to industry and client to client. For instance, if the client works in a bank, a cyber criminal will be focused on gaining access to the customer’s bank accounts and stealing their personal information.

Being aware of these risks and how a cyber attacker may attempt to breach your business helps to put measures and processes in place to ensure that they are unable to compromise your business. In this case, you would focus on adding additional measures to protect the customer’s bank accounts, increase security, and minimise any vulnerabilities for cyber attackers to exploit (1).

The process in which we test your cyber security and help you obtain the accreditation is as follows:

 

Z
Confirm that you have passed your Cyber Essentials.
Z
Complete a pre-audit assessment.
Z
Once we have all of the relevant information, a date will be set where we will perform scans of your internal and external IT infrastructure checking for any vulnerabilities.
Z
Certification or we will advise any remediation that needs to be completed.
Z
Renewal after 12 months.

There are five main components of the Cyber Essentials Plus audit that we check/ analyse:

Z
Firewalls and Internet Gateway
Z
Access Control
Z
Patches
Z
Malware Protection
Z
Secure Configuration

Cyber Essentials Plus is an important accreditation to obtain, it not only tells prospective and existing clients that your business handles data responsibly, but it provides an opportunity for you to review your current processes and make any relevant changes to demonstrate the best cyber security practises within your business.

Please note that the Cyber Essentials Plus certification only lasts for 12 months and will need to be reviewed/renewed on an annual basis. This ensures that your business keeps up with the latest best practises and maintains a significant level of security to prevent cyber threats from breaching your business.


There are so many advantages to becoming Cyber Essentials Plus certified. It also forces best practices within your IT infrastructure to ensure that the way in which you handle data is cyber secure. If you are looking to become Cyber Essentials Plus certified or want to renew your current certification, speak with our security specialists by calling 0121 289 4477.