Cyber Essentials is a government-backed initiative to help businesses just like yours to protect against the most common cyber threats.
Formalise Your Security
You will gain a clear picture of your current cyber security posture, with every important process and policy formally documented to ensure business continuity.
Set Yourself Apart
Whoever your customers are, a Cyber Essentials qualification will let them know that cyber security is a priority for your business.
Win More Business
A Cyber Essentials qualification opens doors to the public sector. Since 2014, Cyber Essentials has been a requirement for public sector contracts that deal with personal data.
Employee Engagement
Improve security awareness within your business, educating your people on the importance of cyber security and on how to minimise threats.
Cyber Liability Insurance
If your turnover is below £20m, your certification comes with Cyber Liability Insurance, complete with 24hr helpline, and incident response worth up to £25,000.
Peace of Mind
Rest easy in the knowledge that you have secured your systems and applications against 80% of cyber attacks and focus on what matters the most.
Thousands of organisations across the UK trust us, here’s why…
IASME Accredited
As an IASME-approved assessor, CyberLab can both certify your organisation and guide you through the process to achieve Cyber Essentials.
1,500+ CE+ Certifications
We've awarded over 1,400 Cyber Essentials & Cyber Essentials Plus accreditations - trusted by public sector & enterprise organisations.
4.9/5 Trustpilot Rating
Our Cyber Essentials customers have rated us 4.9/5 on Trustpilot, with all of our 180+ reviews being Excellent or above.
100% UK-based Experts
All of our IASME qualified experts are 100% based within the United Kingdom, ensuring quality, consistency & transparency.
Cyber Essentials Plus Certification Process
While your Cyber Essentials certification was self-assessed and independently verified, the Cyber Essentials Plus certification includes a Vulnerability Assessment and a Remote Technical Audit of your systems.
A qualified assessor from CyberLab will perform a remote audit on a sample of devices from across your organisation to ensure that their configuration meets the requirements.
Our team will perform a Vulnerability Assessment across these machines to confirm patching and configuration is at an acceptable standard.
We will conduct an external port scan of your internet-facing IP addresses to ensure you are free from obvious vulnerabilities and misconfigurations.
The configuration of your default email and internet browsers will be thoroughly tested to see how well they prevent the execution of potentially malicious files.
We will take screenshots throughout the process to document your configuration compliance to the Cyber Essentials Plus standard.
After you have achieved accreditation, we will review and resubmit your certification each year to ensure you are always compliant.
One of our CREST, CHECK, and Cyber Scheme certified consultants will work with you to define the scope of the engagement and ensure that our tests will fulfil your requirements.
Your assigned consultant will gather information on your organisation, including:
- IP addresses of websites and MX records
- Details of e-mail addresses
- Social networks
- People search
- Job search websites
This information will assist in identifying and exploiting any vulnerabilities or weaknesses.
Collaboratively administrate empowered markets via plug-and-play networks. Dynamically procrastinate B2C users after installed base benefits. Spectacular visualize customer directed convergence without revolutionary ROI.
Efficiently unleash cross-media information without cross-media value. Quickly maximize timely deliverables for real-time schemas. Spectacular maintain clicks-and-mortar solutions without functional solutions.
ISO 27001 is a globally recognised framework for managing information security risks. While penetration testing is not explicitly required, it plays a crucial role in meeting the standard’s risk assessment requirements by identifying weaknesses in systems and strengthening security controls.
Capitalize on low hanging fruit to identify a ballpark value added activity to beta test. Override the digital divide with additional clickthroughs from DevOps. Nanotechnology immersion along the information highway will close the loop on focusing solely on the bottom line.
Podcasting operational change management inside of workflows to establish a framework. Taking seamless key performance indicators offline to maximise the long tail. Keeping your eye on the ball while performing a deep dive on the start-up mentality to derive convergence on cross-platform integration.
Collaboratively administrate empowered markets via plug-and-play networks. Dynamically procrastinate B2C users after installed base benefits. Spectacular visualize customer directed convergence without revolutionary ROI.
Efficiently unleash cross-media information without cross-media value. Quickly maximize timely deliverables for real-time schemas. Spectacular maintain clicks-and-mortar solutions without functional solutions.
Cyber Essentials Success Stories
Cyber Essentials Plus
Moat Homes
Moat strengthens housing sector cyber resilience with CyberLab, securing 24/7 protection and Cyber Essentials certification for trusted resident data.
“With Sophos MDR in place and CyberLab’s wraparound support, we have 24/7 peace of mind knowing threats are being monitored and addressed by people who understand our environment.”
Cyber Essentials
GM61
GM61 partnered with CyberLab to elevate its cyber security, achieving Cyber Essentials accreditation and reinforcing trust with clients in the healthcare sector.
“Working with CyberLab gave us reassurance that our business meets the highest security standards. Their professional, consultative approach made the Cyber Essentials journey straightforward and added real value to our organisation.”
Cyber Essentials Plus
Delvify
Delvify partnered with CyberLab to strengthen its cyber security, ensuring resilient operations for its global fashion tech platform and achieving Cyber Essentials certification.
“CyberLab’s team thoroughly and efficiently supported us in bringing best practice to our security processes. With a consultative approach, they guided us to modify and improve our existing processes to make Delvify a more robust and more secure organisation.”
Cyber Essentials
CSH Transport
CSH Transport partnered with CyberLab to enhance their cyber security, ensuring resilient operations through robust Microsoft 365 protection and achieving Cyber Essentials certification.
“Working with CyberLab has been a seamless and highly effective experience. Their expertise in securing our Microsoft 365 environment and guiding us through Cyber Essentials certification has significantly strengthened our overall security posture.
CREST, CHECK & Cyber Scheme Certified
CREST (the Council of Registered Ethical Security Testers) is an international accreditation with a strict Codes of Conduct and Ethics. CHECK is the Government-backed accreditation from the National Cyber Security Centre (NCSC) which certifies that a company can conduct authorised penetration tests of public sector systems and networks.
All our penetration testers are certified by CREST, with senior consultants certified by CREST to the highest CCT Level. Our testers are also either CHECK Team Leaders (CTL’s) or Team Members (CTM’s).
Security testers that pass the Cyber Scheme exams demonstrate ‘competence and skill at the highest levels’ as defined by the National Technical Authority for Cyber Security (NCSC).
Our team have decades of combined experience and take pride in operating at the highest level of the industry – conducting a broad range of government and commercial tests – and always aim to go the extra mile.
How much does Cyber Essentials Certification cost?
Prices for Cyber Essentials certifications start from just £320.
Prices can vary depending on the size of your organisation, and the level of support that you would like from us. We can offer the certification by itself, alongside a pre-assessment check, or with additional remote support from our team of experts.
We are transparent about our pricing, which we align with NCSC recommendations.
How do we Achieve Accreditation?
As an IASME approved assessor, CyberLab is not only authorised to assess against the scheme, but also able to support your organisation to achieve certification.
Not only are we authorised Cyber Essentials assessors, we are also able to provide bespoke consultancy services to assist your team in meeting and maintaining the high standard of security required.
With our expert advice, you’ll pass first time.
Frequently Asked Questions
- Protects your organisation from approximately 80% of cyber-attacks, according to the UK government.
- Demonstrates your commitment to security and data protection to customers and stakeholders.
- Boosts your reputation and increases your chance of securing new business by showing you have cyber-security measures in place.
- Cyber Essentials permits you to work with the UK government, Cyber Essentials Plus makes you eligible to work with the MoD.
- Lets you focus on your business objectives, knowing you are secure.
You can read the terms and conditions for the Cyber Insurance here.
The Cabinet Office’s note to Procurement Officers is available to read online – this specifies where the Cyber Essentials certification is mandated.
It is noted that an increasing number of government and commercial organizations are requiring this certification of their suppliers, even though they are not mandated to do this through the Procurement Policy Notice.
The Cyber Essentials Plus certification must be carried out within three months of achieving the Cyber Essentials accreditation.
Cyber Essentials Plus requires an on-site audit which can be scheduled as soon as a signed order is request and a Cyber Essentials pass is in place.
Your CyberLab assessor will get in touch when it’s almost time to re-certify.
Cyber Essentials May 2026 Update: What Businesses Need to Do to Pass Danzell
Cyber Essentials continues to evolve to reflect the realities of modern Cyber Security. From 27 April 2026, all new Cyber Essentials assessments are being assessed against Danzell (The new IASME standard based on Requirements for Infrastructure v3.3), introducing more rigorous expectations around cloud security, authentication and patching.
This update is more than a routine refresh. It reflects how organisations now operate, with cloud first services, remote working and increasingly sophisticated commodity threats firmly in scope. For businesses planning certification or renewal after May 2026, understanding these changes early is essential.
This guide breaks down what has changed and, more importantly, what practical steps organisations should take to remain compliant and resilient.
What is YourHackRisk Score?
Your Credit Score for Cyber Security
AI-powered cyber risk monitoring with secure dashboard and shareable reports, delivered by security experts.
Dark Web Scanning
Vulnerability Scanning
Recon Scanning
Supply Chain Security
Speak With an Expert
Enter your details and one of our experts will be in touch.
Whether you’re looking to implement basic cyber security best practice, improve your existing defences, or introduce a new system or solution, our team of expert consultants, engineers, and ethical hackers are here to help.
Our team specialise in creating bespoke security solutions and testing packages to improve and maintain your security posture.
We are 100% vendor agnostic and will only ever recommend the best products and solutions for your requirements.
