United Kingdom
Select regional store:

Cyber Essentials Solutions

Cyber Essentials accreditation

IT Governance is a CREST-accredited Cyber Essentials certification body. 

In 2020, the NCSC (National Cyber Security Centre) will implement some changes to the Cyber Essentials scheme to prepare it for the future. The current five Cyber Essentials accreditation bodies will be replaced by one. From 1 April 2020, The IASME Consortium will operate as the sole accreditation body for the scheme.

In support of this change, IT Governance will become an IASME-accredited certification body from April next year. We will continue providing the high level of cost-effective ongoing service our clients expect from us and will ensure the transition to the new arrangements is seamless. In the meantime, and in line with current arrangements supported by the NCSC, our clients will continue to be certified under CREST, and all existing and new certifications will continue to be valid and in line with current requirements.

Eliminate the hassle and expense of certification. Apply online today for your Cyber Essentials or Cyber Essentials Plus certification.

What's the difference between Cyber Essentials and Cyber Essentials Plus?

Cyber Essentials Certification

Cyber Essentials

  • Self-assessment questionnaire (submitted online)
  • External vulnerability scan (conducted online by our penetration testing team).
  • This ensures that best practice is in place and that there are no known vulnerabilities present on the Internet-facing networks and applications.

Included

Do It Yourself

Get A Little Help

Get A Lot Of Help

CREST certification

External vulnerability scan*

Documentation toolkit

 

Live online consultancy (2 hrs)

 

 

On-site consultancy (1 day)

 

 

 

£300

£650

£1,450

 

Shop now

Shop now

Shop now

Cyber Essentials Plus Certification

Cyber Essentials Plus

  • Includes all of the assessments for Cyber Essentials certification (completed online)
  • Internal vulnerability scan
  • On-site assessment of your infrastructure, specifically focusing on workstations and mobile devices.

Included

Do It Yourself +

Get A Little Help +

Get A Lot Of Help +

CREST certification

External vulnerability scan*

Documentation toolkit

 

Live online consultancy (2 hrs)

 

 

On-site consultancy (1 day)

 

 

On-site assessment**

Internal vulnerability scan

 

£1,550

£1,850

£2,650

 

Shop now

Shop now

Shop now

Go one step further in protecting your organisation with phishing staff awareness training

Phishing Staff Awareness E-learning Course

Human error is a leading cause of data breaches. To reduce your risk of a successful cyber attack we recommend implementing phishing staff awareness training. Educate your workforce to identify malicious phishing scams and empower them to take the right steps to secure your organisation.


Why combine Cyber Essentials with phishing staff awareness training?

Your staff are your front line of defence, which is why cyber security training is a must. Once a malicious email has slipped through your technological defences, it’s down to your staff to make the right choice: either delete it or open the email and inadvertently cause a data breach.

While Cyber Essentials is a great starting point to improve overall cyber security, taking our recommended extra step to train your staff will strengthen your security defences, keeping your organisation and data safe.

Find out more

“Cyber Essentials certification does a lot to target low hanging fruit, but it doesn’t cover all low hanging fruit attackers go after. Combining Cyber Essentials with phishing staff awareness training can reduce an organisation’s attack surface.

Enable your most important asset, your employee, to be more effective in securing your organisation to minimise the risk of a successful attack.”

- Geraint Williams, Chief Information Security Officer, GRC International Group

Which solution is right for your organisation?

Get a lot of help package

Suitable for any organisation, especially those with little experience of the controls of the scheme. It is also recommended for organisations who are unaware of the scope of their projects as this package includes the on-site consultancy, which may also be used remotely. Shop for Cyber Essentials packages below:
 

Cyber Essentials Cyber Essentials Plus


Get a little help package

Suitable for organisation with some experience of the controls required for certification, but may need assistance defining their scope and help understanding and answering the SAQ. Shop for Cyber Essentials packages below:
 

Cyber Essentials Cyber Essentials Plus


Do it yourself package

Suitable for organisations who are familiar with the controls and application process, such as those renewing their certification.  
You have reviewed IT Governance’s scoping guide and are confident in defining the scope of your assessment encompassing the entire organisation. Shop for Cyber Essentials packages below:
 

Cyber Essentials Cyber Essentials Plus

*All of our packages include an external vulnerability scan that covers up to 16 IP addresses.

** All of our Cyber Essentials Plus packages are based on on-site testing at one location, of one type of user account, on up to ten device builds. Additional workstations, mobile devices and build types may need to be tested to meet sampling requirements of the scheme. For further information, please see our FAQ section.

This website uses cookies. View our cookie policy