Skip to Main Content
Strengthen your email security practices with 50% off e-learning | Shop now
Cyber Essentials Plus - Get A Little Help

Cyber Essentials Plus - Get A Little Help

SKU: G4501
Format: Certification (online purchases only)

Achieve Cyber Essentials and Cyber Essentials Plus certification with a little help from IT Governance, one of the scheme’s founding certification bodies that remains one of the largest in the UK.

  • Receive IASME Cyber Essentials and Cyber Essentials Plus certificates and a report upon successful completion of all elements.
  • Includes extra support if you do not have a technical background or find some of the self-assessment questions difficult to understand.
  • Includes cyber insurance and one-to-one consultancy support to bolster your organisation’s commitment to baseline cyber security.
  • Cyber Essentials Plus certification includes an on-site or remote assessment, internal vulnerability scans and an external vulnerability scan, which offer a higher level of assurance to your stakeholders that your Cyber Essentials controls are in place.
  • A pre-test call to help you prepare for your assessment.
  • Consultancy support is on hand throughout your journey to make sure you achieve certification.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account.  Apply online today or call our service centre team on 00 800 48 484 484.

NCSAM: Defend your organisation with our expert solutions. Use code NCSAM24 at checkout and save 15%. T&C’s apply*

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service
Description

What’s included in the Cyber Essentials Plus – Get A Little Help package?

Cyber Essentials and Cyber Essentials Plus Certification

  • Up to three hours* consultancy support to help you with your submission.
  • Access to the IASME portal, where you will submit your SAQ (self-assessment questionnaire).
  • An on-site/remote assessment, internal vulnerability scans and external vulnerability scans.
  • Your Cyber Essentials and Cyber Essentials Plus certificates.

Cyber Essentials Remote Consultancy Support

Some of the Cyber Essentials self-assessment questions can be difficult to understand if you do not have a technical IT background or you have a complex company structure. This service is applicable for the first year of your subscription and provides up to three hours* of one-to-one consultancy support. It’s ideal for organisations that need extra help understanding the scheme, defining the scope of their certification or completing the SAQ.


How the application process works:

  • Your Cyber Essentials package will be automatically fulfilled onto your account on our IT Governance Cyber Security Portal (CS Portal).
  • You log into our CS Portal and confirm your details.
  • We send you access details for the IASME Cyber Essentials portal via email.
  • We contact you to arrange your initial consultancy support.
  • We help you define your scope for certification and explain how to complete the IASME SAQ.
  • You confirm and submit your application.
  • Subject to a positive outcome, we issue your Cyber Essentials certificate.
  • Once you are Cyber Essentials certified, you schedule an on-site/remote assessment and a pre-engagement call.
  • We conduct the internal assessment and scans on a sample of your Internet-connected devices, and then provide the results. If there are nonconformities, we will also provide feedback to help you understand how to achieve certification.
  • We schedule your external vulnerability scan.
  • Subject to a positive outcome, you receive your Cyber Essentials Plus certificate and report.
Net Promoter score of +68

Our Cyber Essentials services have an excellent NPS (Net Promoter Score) of +68.


Is this service right for you?

Our Get A Little Help package has been created for organisations that have some understanding and knowledge of the five key controls required for certification, but that may need some help completing the IASME SAQ.


See what our customers think about this service

“Our consultant, Terry Norton, was professional throughout and clearly had a very good knowledge of the standard and the testing, being able to help our IT Administrator ensure the relevant audit tools were installed correctly. We also found Terry friendly, patient and helpful, which is very important for remote sessions.”

- Peter Hodgson, Viewpoint Construction Software Limited

 

“Professional and supportive, great customer service. Maintained a dialogue without making the candidate feel under pressure with the process. Supportive throughout.”

- Rowan Irwin, T-Systems Limited

 

“Brilliant service from the team who were completely supportive of someone like me who runs a microbusiness and is hopeless with technical stuff. I am so grateful fo the handholding and advice you gave me.”

- Caroline

 

“Thanks for all your support, team – really appreciate your assistance in getting us through this in such a short space of time. Couldn’t recommend a better group of folk to work with!”

- Rowan Troy, Six Degrees Technology Group Limited

 

“Amazing Service, very friendly throughout and willing to help you every step through the process.”

- Ian

 

“IT Governance were very helpful and really focussed on what was needed to get the certification and have a more secure setup as part of the process (we did not just get assurance, we improved our assurance process).”

- Karl Axnick, Alscient Ltd

 

“Terry and Dan were extremely helpful, knowledgeable, and provide quick and effective answers to any query I raised.”

- Anonymous

 
Benefits

Benefits of Cyber Essentials Plus certification

Work with the best

IT Governance is one of the founding Cyber Essentials certification bodies and remains one of the largest in the UK. We have issued more than 6,000 certifications worldwide, and our broad range of fixed-price services has helped thousands of organisations achieve baseline cyber security.

Protect your organisation

Implementing the five controls correctly will help protect your organisation from approximately 80% of cyber attacks.

Secure the supply chain

The ICO (Information Commissioner’s Office), the UK’s data protection regulator, recommends Cyber Essentials as a “good starting point” for the cyber security of the IT you rely on to hold and process personal data.

Secure more business

Boost your reputation and attract new business by assuring customers you take cyber security seriously and have cyber security measures in place.

Work with the UK government and MOD

Cyber Essentials Plus will give you the opportunity to work with the UK government and MOD.

Be listed on the National Cyber Security Centre’s database

Cyber Essentials certificates issued in the previous 12 months are listed on the NCSC website, showing suppliers your commitment to protecting your and your customers’ data.

Conditions

Conditions

Cyber Essentials Plus involves a technical audit of the systems that are in scope for Cyber Essentials. This includes a representative set of workstations, mobile devices, server devices offering user access to an interactive desktop environment, and build types used by the organisation’s end users to complete their day-to-day duties. The number of builds is defined by the number of configurations of operating systems and software suites installed. If more than one browser or Office suite is used, each variant will need to be tested. If they are installed on the same build, this is acceptable.

  • This package includes a Cyber Essentials Plus Audit at one location, of one type of user account, on up to ten sample devices. Additional workstations, mobile devices, server devices and build types may need to be tested to meet the sampling requirements of the scheme. If you require more than ten end-user workstation or server devices to be tested, you will need to purchase Cyber Essentials Plus Certification – Additional Device Testing. This testing can be conducted remotely in most instances.
  • If you fail any of the Cyber Essentials Plus testing performed as part of the overall engagement, we will provide you with details of further tests required. Cyber Essentials Plus final reports must be completed no more than 30 days after the start date of the first scans. Any remediation work and required retesting must be completed with sufficient time for QA and generation of the report and certificate within this time frame. These tests will be billed separately.
  • The package includes an external vulnerability scan for up to 16 IP addresses. If you have more than 16 IP addresses, you will need to purchase additional IP packages in packs of 16. If you fail your external scan, a rescan will need to be purchased, plus any additional IP packages that you need to cover the failing IP addresses if you have more than 16 IP addresses.
  • If you ask that testing is undertaken at your business location, additional expenses will be charged to accommodate our consultant’s travel time and costs for the on-site assessment. These will be billed separately.
  • Cyber Essentials certification: if you are not successful on your first submission for Cyber Essentials, you have two working days to submit a further attempt for certification. If you are not successful on your second submission, you will need to reapply at the cost of a new application.
  • If your Cyber Essentials Plus application is unsuccessful, your Cyber Essentials certification may be revoked.
  • If your Cyber Essentials Plus application is not fully completed within three months of the date of your Cyber Essentials certificate, you will need to repeat your Cyber Essentials Certification at full cost.
  • You can use your Cyber Essentials remote consultancy support time throughout the application process, but any unused time cannot be credited back or carried over.
  • The charge for the Cyber Essentials certificate is included in the package and depends on the size of your organisation.

All of our Cyber Essentials (and Cyber Essentials Plus) packages include the cost of Cyber Essentials certification, as set out by IASME. Any additional charges above the cost of Cyber Essentials certificate are for consultancy services. The level of consultancy services delivered will vary based on organisation size.

Size of organisation Cost of certificate
Micro (0–9 employees) €360 + VAT
Small (10–49 employees) €480 + VAT
Medium (50-249 employees) €540 + VAT
Large (250+ employees) €600 + VAT

Test requirements

  • All user devices are subject to testing and will be agreed upon before the testing date, including workstation, server devices within scope, mobile and BYOD (bring your own device), and must be available for testing on the agreed date/during the engagement.
  • All devices within the scope of testing must be user devices and cannot be built specifically for testing.
  • A local user account with username and password must be available for each user group in scope.
  • Devices must have Internet access, allow emails from our test domain and be accessible by our test web server (https://ces.itgovernance.co.uk).
  • You must provide details of a user email account per user group being assessed.
  • Workstation builds and server devices must be configured to allow an authenticated vulnerability scan that will determine patch and version numbers of installed software, and you must provide or enter details of the administrative user account to be used.
  • Remote registry must be enabled on the workstation builds and server devices, and no global policies that block the authenticated vulnerability scan are permitted.

*The amount of consultancy support available depends on the size of your organisation and costs of your certification (set out by IASME).

Customer Reviews

top
Loading...