Show you’re serious about security with Cyber Essentials

By Hannah Sang, Published Tuesday, 5th April 2022

Cyber Essentials (CE) and Cyber Essentials Plus (CE+) are accreditations that demonstrate your organisation’s commitment to safe digital practices. Here’s why we think they’re important and how you can get started.

What is Cyber Essentials (CE)?

Cyber Essentials is a UK government scheme that demonstrates a business has met a minimum level of cyber security. It’s a self-assessment, with a set of questions to answer based on 5 key controls:

  • Firewalls
  • Secure configuration
  • User access control
  • Malware protection
  • Patch management
Not only does becoming CE compliant mean you reduce the risk of a cyber-attack, it’s also a great way for you to show your customers and partners that you’re serious about security.

How much does Cyber Essentials cost?

The cost of Cyber Essentials depends on the size of your business. The certification price starts at £300 +VAT for micro-organisations and £400 for those between 10 and 49 employees. Quite often, businesses will need help to complete and check the forms, including any improvement work that’s needed in order to pass. You will need to factor this in on top of the certification cost.

Check how much the certification would be for you: https://iasme.co.uk/cyber-blog/price-change-and-updates-to-cyber-essentials/

What is Cyber Essentials Plus (CE+)?

CE+ is the advanced certification, testing against the same 5 controls. The difference is that for CE+ your answers are verified by a certified body. The auditor will test a sample of your devices, within scope, and verify that the answers are true.

If you want to go the extra mile and become Cyber Essentials Plus certified, you will need to do so within 3 months of your Cyber Essentials accreditation. So we recommend considering both options at the same time.

Cyber Essentials Plus sets you and your business apart from the rest, as well as ensuring that you’ve got the correct cyber security processes in place.

How do I know if we’re ready for CE & CE+?

If you’re not sure whether or not to try to achieve these accreditations, you’re not alone. It’s a question we are often asked by business leaders. To help you decide, the certification body IASME has created a readiness tool, which is a great place to start: https://getreadyforcyberessentials.iasme.co.uk/questions/

The readiness tool features handy checklists of the things you need to know to answer the accreditation questions, such as:

  • Do you run any software that is no longer in support?
  • Are all your default passwords changed regularly and longer than 8 characters?
  • What cloud services do you run and have you enabled Multi Factor Authentication (MFA) on them?
Datcom can help you gain the accreditations that are right for you. We can guide you through the entire process step by step, or we can simply be your safety net as and when you need us – we can tailor our service to the level of support you need. Get in touch today and let’s get you on the road to Cyber Essentials.
Hannah Sang

By Hannah Sang

Hannah is Sales Director for Datcom. Hannah has over 16 years of experience in the IT industry, advising organisations on IT solutions and cybersecurity.

Contact

Get in touch

Call us on 0333 000 3210 or Email us solutions@datcom.co.uk

Latest news...

Facebook scams, don’t be fooled

With around 2.9 billion monthly users, Facebook is one of the most popular social media sites. So it’s no surprise that this large audience is a target for scams and fraudulent activity. There are some common tricks that cyber criminals like to use. Take a look and see if you have come across any.

Read More

Log4Shell Vulnerability

A vulnerability has been discovered in a piece of software called "Log4j". This software, developed by Apache, is in millions of other applications to process logging information. Some high-profile use cases are the video game Minecraft, Apple iCloud, Amazon, Twitter, Tesla, the list goes on.

Read More