If you have any questions, or need advice or guidance on our Cyber Essentials products and services, please contact us.
The UK government's Cyber Essentials scheme provides:
IT Governance is a CREST-accredited certification body for the Cyber Essentials scheme. With our Cyber Essentials online portal, achieving certification couldn’t be easier. Here’s how it works.
In 2020, the NCSC (National Cyber Security Centre) will implement some changes to the Cyber Essentials scheme to prepare it for the future. The current five Cyber Essentials accreditation bodies will be replaced by one. From 1 April 2020, The IASME Consortium will operate as the sole accreditation body for the scheme.
In support of this change, IT Governance will become an IASME-accredited certification body from April next year. We will continue providing the high level of cost-effective ongoing service our clients expect from us and will ensure the transition to the new arrangements is seamless. In the meantime, and in line with current arrangements supported by the NCSC, our clients will continue to be certified under CREST, and all existing and new certifications will continue to be valid and in line with current requirements.
A self-assessment option that demonstrates you have key controls in place to help protect against a wide variety of the most common cyber attacks. It includes an SAQ (self-assessment questionnaire) and an external vulnerability scan. The certification process has been designed to be lightweight and easy to follow.
A self-assessment option that demonstrates you have key controls in place to help protect against a wide variety of the most common cyber attacks. It includes an SAQ (self-assessment questionnaire), an external vulnerability scan, an additional internal scan and an on-site assessment.
Log in to our online portal, which provides a secure, user-friendly system to help define the scope of your assessment, to complete your SAQ.
The portal will automatically mark your responses and provide you with an interim result.
Because we are a CREST-accredited certification body, you’ll get the added benefit of an external vulnerability scan to verify that your controls are operating effectively.
For Cyber Essentials Plus, you’ll need to arrange an additional internal scan and an on-site assessment.
IT Governance assessors will review your submission and compile a report, which is checked by our quality assessor.
If all activities result in a pass, we'll issue a certificate for your organisation.
If you do not pass your initial assessment, you will have to be reassessed.
Find out more about repeat testing and assessment fees.
With IT Governance, you can complete the entire certification process quickly and easily using our online portal for as little as £500.
To find out more about the five essential controls and the activities you should be routinely undertaking to protect your organisation, follow the links below.
Please contact our team for advice and guidance on our Cyber Essentials products and services.