Cyber Essentials Plus involves a technical audit of the systems that are in scope for Cyber Essentials. This includes a representative set of workstations, mobile devices, servers and build types used by the organisation’s end users to complete their day-to-day duties. The number of builds is defined by the number of operating system configurations and software suites installed. If more than one browser or Office suite is used, each variant will need to be tested. If they are installed on the same build, this is acceptable.
This technical audit is usually conducted remotely.
Each package provides testing for up to an additional ten devices. We may schedule additional assessors, or additional days to ensure enough time is allowed to complete all required tests.
Our Cyber Essentials services have a ‘world-class’ NPS (Net Promoter Score) of +100.
The duration of testing depend on the number of builds of user devices (including BYOD (bring your own device)) that are within the scope of certification.
The number of locations to be tested depends on whether all the different builds can be tested in one location. One location refers to one physical office/site, or all devices/machines selected for testing being on the same network if remote.
The number of builds is defined by the number of operating system configurations and the software suite installed.
If more than one browser is used, each variant will be in scope for testing. For further information, please read our FAQ.
IT Governance is one of the founding Cyber Essentials certification bodies and remains one of the largest in the UK. We have issued more than 7,000 certifications worldwide and our broad range of fixed-price services has helped thousands of organisations achieve baseline cyber security.
Cyber Essentials Plus offers a higher level of assurance. It involves a technical audit of the systems that are in scope for Cyber Essentials to verify that the Cyber Essentials controls are in place. The internal and external scans will identify critical vulnerabilities that may lead to a compromise of your infrastructure.
Boost your reputation and attract new business by assuring customers you take cyber security seriously and have cyber security measures in place.
Cyber Essentials certificates issued in the previous 12 months are listed on the NCSC website, showing suppliers your commitment to protecting your and your customers’ data.
The NCSC (National Cyber Security Centre) has reviewed what influence Cyber Essentials has on cyber security attitudes and behaviours. It found: