Show you’re serious about cyber security and prevent security incidents by achieving Cyber Essentials with CyberLab.
Cyber Essentials is a government-backed initiative to help businesses just like yours to protect against the most common cyber threats.
Originally launched in 2014, over 120,000 certificates have since been awarded to businesses of all sizes across the country.
As an IASME approved assessor for the Cyber Essentials and Cyber Essentials Plus, we offer a range of options depending on your requirements and technical ability.
Get Cyber Essentials Certified
Formalise Your Security
Our process gives you and your team a clear picture of your current cyber security standard and ensures that key processes and policies are formally documented in case the worst should happen.
Set Yourself Apart
A Cyber Essentials accreditation is a great selling point for your business. No matter who your clients are - from SMEs to FTSE 100 companies - they need to know you are taking their data security seriously.
Win More Business
Public contracts involving personal data have required Cyber Essentials since 2014. The MOD implemented this policy in 2016, with many businesses following suit. Certification can make the difference when it comes to winning big contracts.
The certification process builds cyber security awareness within your organisation, educates your people on essential security practices, and equips them to respond to potential threats.
Cyber Liability Insurance
Upon achieving certification, any UK organisation with turnover below £20m automatically qualifies for AXA Cyber Liability Insurance, including a 24-hour helpline, crisis support, and incident response up to £25,000.
Peace of Mind
You can sleep soundly at night knowing that your systems and applications are secured against 80% of cyber attacks, allowing you to focus on what matters most – your business objectives.
The Process: Five Technical Controls
The Cyber Essentials scheme addresses five key controls that, when implemented correctly, can prevent around 80% of cyber attacks:
Creating a buffer between your network and external networks, a firewall protects your network by analysing incoming traffic to identify whether access to your network should be granted.
Cyber Essentials requirement – A firewall must be configured and used on all devices, particularly those connected to public or untrusted Wi-Fi networks.
Default configurations often make it as easy as possible to connect and use, which can create vulnerabilities if left unchanged. Settings should be checked, disabling, or removing unnecessary functions, while default passwords should be updated before deployment. Two-factor authentication should be used for data sensitive accounts.
Cyber Essentials requirement – Only necessary software, accounts and applications are used.
In allowing access to those — and only those — accounts (software, settings, services, and functions) that your people need in their specific job role, the risk of potential damage can be minimised.
Cyber Essentials requirement – Access to your data must be controlled through user accounts, with controlled administration level privileges given only to your people who specifically need them.
Malware — including ransomware and viruses — can come from a range of sources, including infected email attachments or USB memory sticks. Anti-malware measures are included within most operating systems. Malware can be introduced to a network when a rogue application is downloaded, so whitelisting – only giving users the ability to run applications authorised by the administrator – offers good protection. Sandboxing – running an application in an environment with restricted access to the rest of your devices and network – helps to keep your data beyond the reach of malware.
Cyber Essentials requirement – At least one approach, anti-malware measures, whitelisting or sandboxing must be implemented.
Operating systems and applications become vulnerable if they are not up kept to date. To keep patches up to date, your systems and applications should be set to “automatically update” where possible. When no longer supported, systems and applications should be replaced.
Cyber Essentials requirement – Devices, software and apps must be kept up to date.
Download Cyber Essentials Checklist
We’ve put together a checklist to get you through the Cyber Essentials certification.
How Do We Achieve Accreditation?
As an IASME approved assessor, CyberLab is not only authorised to assess against the scheme, but also able to support your organisation to achieve certification.
Not only are we authorised Cyber Essentials assessors, we are also able to provide bespoke consultancy services to assist your team in meeting and maintaining the high standard of security required.
With our expert advice, you’ll pass first time.
How Much Does a Cyber Essentials Certification Cost?
Prices for Cyber Essentials certifications start from just £300.
Prices can vary depending on the size of your organisation, and the level of support that you would like from us.
We can offer the certification by itself, alongside a pre-assessment check, or with additional remote support from our team of experts.
We are transparent about our pricing, which we keep in-line with the NCSC recommendations.
Speak With an Expert
Enter your details and one of our specialists will be in touch.
Our team specialise in creating bespoke security solutions and testing packages to improve and maintain your security posture.
We are 100% vendor agnostic and will only ever recommend the best products and solutions for your requirements.