Cyber Essentials Plus

Q: What is Cyber Essentials Plus?

Cyber Essentials Plus is a government backed cyber security certification scheme which helps you to manage, reduce and prevent cyber threats. It comes with an onsite assessment to check that you have implemented these controls.

Q: What is the difference between Cyber Essentials and Cyber Essentials Plus?

Both Cyber Essentials and Cyber Essentials Plus concern the cyber security of your business. Where they differ is that Cyber Essentials is an online assessment of the cyber security efforts your business makes whereas Cyber Essentials Plus is more in-depth and requires an onsite visit to verify what you highlighted in your online assessment. Cyber Essentials is a prerequisite for Cyber Essentials Plus so you must have taken the online assessment before you can have the onsite visit.

Q: How long does it take to get Cyber Essentials Plus?

Cyber Essentials Plus Certification is usually possible within 45 days. By choosing QMS to help you with your Cyber Essentials Plus Certification requirements, you can be confident that you are choosing a compliance process that delivers results with minimal fuss.

Implement effective cyber security controls to drive business efficiency, save money and improve productivity.

Cyber Essentials Plus will help you to enhance your organisation’s reputation and win more business by demonstrating to customers and other interested parties that you take the security of their information seriously and have taken the necessary steps to reduce cyber threats.

View our full suite of information security products

Get Your Free Quote Today

A graphic of a white tick on a blue circle

Cyber Essentials Plus

Benefits

Cyber Essentials Plus

Cost

Cyber Essentials Plus

Process

Cyber Essentials Plus

FAQs

Cyber Essentials Plus

Further details

What is Cyber Essentials Plus?

Cyber Essentials is for all organisations, whatever sector you’re in. Implementing these controls will help your organisation defend against the most common forms of cyber-attack.

Additionally, If you intend to apply for government contracts, achieving a Cyber Essentials Certification is often a mandatory requirement.

The Scheme itself focuses on Internet-originated attacks against an organisation’s IT system, based on five key security controls.

Boundary firewalls and internet gateways – these provide a basic level of protection where a user connects to the Internet. A firewall will help to keep attackers or external threats from getting access to your system.
Secure configuration –systems need to be configured to ensure that the current design and build state of the system is known, good & trusted.
Access control – it is important that only the appropriate personnel have access to systems and at the appropriate level.
Malware protection – this doesn’t just protect you against viruses, worms and key loggers, but also nuisance programs. It is important that virus and malware protection is installed and is kept up to date.
Patch management – managing upgrades for software applications and technologies. A patch management plan can help you handle changes efficiently, ensuring the latest supported version of applications is used and all the necessary patches supplied by the vendor been applied.

By choosing QMS to assist you with implementing the appropriate cyber security controls, you will benefit from support and advice throughout the process, an internal assessment of your cyber security processes and an onsite technical vulnerability scan of your devices.

0333 344 3646

UK team 8am - 5pm

Contact us

Live chat

Get a quote

What are the benefits of Cyber Essentials Plus?

Here are some benefits of using the Cyber Essentials Plus framework

Implement recognised, best-practice security controls to protect against cyber-attacks
Reduce the cost of insurance premiums, through participating insurers
Improve customers confidence by demonstrating that you are a responsible company with a commitment to security
Protect your company’s reputation by reducing the likelihood of a cyber attack occurring
Improve your organisation’s ability to win more contracts by meeting Government tender requirements

When implemented correctly, the Cyber Essential Plus scheme will help you to improve business efficiency, save money and increase productivity.

Frequently Asked Questions

What is Cyber Essentials Plus?

What is the difference between Cyber Essentials and Cyber Essentials Plus?

How long does it take to get Cyber Essentials Plus?

Find out more

How can QMS help your Business?

QMS gets your business set up for success:

Expert

Our team of consultants has provided GDPR assessments to clients ranging from SMEs to blue chip organisations across a broad spectrum of verticals and industries.

Affordable

Our processes add value at every stage, without taking up unwarranted management time. We commit to providing you with the best possible value for money – including a price promise from the outset, along with the ability to stagger payments at no extra cost.

Simple

We make the process as smooth and uncomplicated as possible, and ensuring you get the training and advice that works for you.

A smiling QMS Certification Development Consultant takes a call on his headset

The Cyber Essentials Plus Process

With QMS’ simple 3 step certification process you can achieve the Cyber Essentials Plus Certification in under 45 days.

Cyber Essentials Plus Assist: Pre-assessment consultancy

Upgrade to the Cyber Essentials Plus Assist service and we will include a pre-assessment consultancy with one our experienced Cyber Essential Consultants to support you as you prepare for the onsite Assessment. During the consultancy they will carry out a gap-analysis and vulnerability assessment, while also offering advice and guidance on the requirements of the scheme – helping you to increase your chances of passing the onsite assessment first time.

Cyber Essentials Certification Process:

The Head of Certification at QMS discusses ISO with a QMS client

Consultancy

To begin the process, if you have not chosen the Cyber Essentials Plus Assist Service, an SBCS Consultant will contact you to provide an in-depth understanding of what is required from your organisation during the onsite Assessment.

Assessment

Providing the online Cyber Essentials assessment has taken place and the basic level of Cyber Essentials Certification has been achieved, an on-site assessment will take place. During this assessment the SBCS Consultant will review your processes against the requirements of the scheme, highlighting any areas that requirement improvement. Once complete, a report will be issued, detailing the findings.

A person examines their Cyber Essentials certificate on their laptop

Certification

An SBCS Assessor must now review the evidence that the SBCS Consultant gathered during the onsite Assessment. Providing the SBCS Assessor is satisfied that the evidence supplied meets the requirements of the Cyber Essentials Plus Standard, you will be awarded the Cyber Essentials Plus Certificate and sent a copy of the Report.