IT Governance is a CREST-accredited Cyber Essentials certification body, meaning that this service includes an external and internal vulnerability scan that independently verifies your security status.
This service will help you achieve CREST-accredited Cyber Essentials Plus certification for just £1,250. It is conducted online and includes:
The CREST-accredited Cyber Essentials scheme is now closed to new entrants with effect from 1 April 2020. IT Governance is unable to accept new customers under the replacement scheme until contractual issues have been addressed. As soon as they have, we can process new Cyber Essentials certification applications.
This solution is for organisations that have knowledge of the five security controls (secure configuration, boundary firewalls, access controls, patch management and malware protection), and are comfortable carrying out all of the preparation for certification.
If you need help defining your scope, or are unclear about any of the five Cyber Essentials control areas, we recommend that you purchase our Cyber Essentials Plus Get A Little Help package, as this includes two hours of Live Online consultancy. We will then be able to help you through the application process. Alternatively, you can buy our Live Online consultancy alongside your Cyber Essentials Plus Do It Yourself application.
Prerequisites
The package price is based on on-site testing at one location, of one type of user account, on up to eight workstation builds and up to five mobile devices (smartphones and tablets*). The duration and the number of locations that must be included in the internal testing depend on the number of user device builds, including BYOD, that are within the scope of the certification.
*Microsoft Surface Pro Tablet is treated as a workstation.
The number of locations to be tested depends on whether all the different builds can be tested in one location. A build can be delivered to a particular site for testing purposes even if it is not normally deployed there, providing it accesses the Internet in its usual manner.
The number of builds is defined by the number of configurations of operating system and software suites installed. Examples of relevant software are listed below:
If more than one browser or Office suite is used, each variant will need to be tested. If they are installed on the same build, this is acceptable.
The on-site assessment is subject to additional travel expenses, which will be charged in arrears.
The package includes a free vulnerability scan for up to 16 IP addresses. If you have more than 16 IP addresses, you will need to purchase additional IP packages in packs of 16. If you fail your external scan, a rescan will need to be purchased, plus any additional IP packages that you need.
View all the repeat testing and assessment fees here >>
Read our Cyber Essentials FAQ >>
The Cyber Essentials scheme is a world-leading, cost-effective assurance mechanism for companies of all sizes to demonstrate that the most important cyber security controls have been implemented.
It provides five security controls that, according to the UK government, could prevent “around 80% of cyber attacks”.
Correctly implemented cyber security has the additional advantage of driving business efficiency throughout the organisation, saving money and improving productivity.
Implementing the five controls correctly will help protect your organisation.
Focus on your core business objectives knowing that you are protected from the majority of cyber attacks.
Demonstrate your commitment to protecting your own data and that of your customers and suppliers.
Cyber Essentials will permit you to work with the UK government and Cyber Essentials Plus will give you the opportunity to work with the MOD.
Boost your reputation and have a greater chance of winning contracts.
Cyber insurance agencies often look more favourably on organisations that have achieved Cyber Essentials certification.