Cyber Essentials Plus

Implement effective cyber security controls to drive business efficiency, save money and improve productivity.

Cyber Essentials Plus will help you to enhance your organisation’s reputation and win more business by demonstrating to customers and other interested parties that you take the security of their information seriously and have taken the necessary steps to reduce cyber threats.

Why should I get Cyber Essentials Plus?

Cyber Essentials is for all organisations, whatever sector you’re in. Implementing these controls will help your organisation defend against the most common forms of cyber-attack.

Additionally, If you intend to apply for government contracts, achieving a Cyber Essentials Certification is often a mandatory requirement.

The Scheme itself focuses on Internet-originated attacks against an organisation’s IT system, based on five key security controls.

  1. Boundary firewalls and internet gateways – these provide a basic level of protection where a user connects to the Internet. A firewall will help to keep attackers or external threats from getting access to your system.
  2. Secure configuration –systems need to be configured to ensure that the current design and build state of the system is known, good & trusted.
  3. Access control – it is important that only the appropriate personnel have access to systems and at the appropriate level.
  4. Malware protection – this doesn’t just protect you against viruses, worms and key loggers, but also nuisance programs. It is important that virus and malware protection is installed and is kept up to date.
  5. Patch management – managing upgrades for software applications and technologies. A patch management plan can help you handle changes efficiently, ensuring the latest supported version of applications is used and all the necessary patches supplied by the vendor been applied.

By choosing QMS to assist you with implementing the appropriate cyber security controls, you will benefit from support and advice throughout the process, an internal assessment of your cyber security processes and an onsite technical vulnerability scan of your devices.


Here are some benefits of using the Cyber Essentials Plus framework


  • 1

    Implement recognised, best-practice security controls to protect against cyber-attacks

  • 2

    Reduce the cost of insurance premiums, through participating insurers

  • 3

    Improve customers confidence by demonstrating that you are a responsible company with a commitment to security

  • 4

    Protect your company’s reputation by reducing the likelihood of a cyber attack occurring

  • 5

    Improve your organisation’s ability to win more contracts by meeting Government tender requirements

When implemented correctly, the Cyber Essential Plus scheme will help you to improve business efficiency, save money and increase productivity.

 

How to get Cyber Essentials Plus

With QMS’ simple 3 step certification process you can achieve the Cyber Essentials Plus Certification in under 45 days.

Cyber Essentials Plus Assist: Pre-assessment consultancy

Upgrade to the Cyber Essentials Plus Assist service and we will include a pre-assessment consultancy with one our experienced Cyber Essential Consultants to support you as you prepare for the onsite Assessment. During the consultancy they will carry out a gap-analysis and vulnerability assessment, while also offering advice and guidance on the requirements of the scheme – helping you to increase your chances of passing the onsite assessment first time.

Cyber Essentials Certification Process:  

Consultancy

To begin the process, if you have not chosen the Cyber Essentials Plus Assist Service, an SBCS Consultant will contact you to provide an in-depth understanding of what is required from your organisation during the onsite Assessment.

Assessment

Providing the online Cyber Essentials assessment has taken place and the basic level of Cyber Essentials Certification has been achieved, an on-site assessment will take place. During this assessment the SBCS Consultant will review your processes against the requirements of the scheme, highlighting any areas that requirement improvement. Once complete, a report will be issued, detailing the findings.

Certification

An SBCS Assessor must now review the evidence that the SBCS Consultant gathered during the onsite Assessment. Providing the SBCS Assessor is satisfied that the evidence supplied meets the requirements of the Cyber Essentials Plus Standard, you will be awarded the Cyber Essentials Plus Certificate and sent a copy of the Report.

How much does it cost to get Cyber Essentials Plus?

QMS is committed to providing a cost-effective route to Cyber Essentials Plus Certification. We focus on making the process as simple and straightforward as possible, meaning that Certification is possible within 45 days.

 Our fees typically depend on the number of sites and the number of devices (desktops, laptops, etc) that need to be checked as part of the physical vulnerability scan & audit.

To find out how affordable Cyber Essentials Certification can be for your organisations, just use our Fee Calculator below and we’ll email you a bespoke quote immediately.

How long will it take to get Cyber Essentials Plus?

Cyber Essentials Plus Certification is usually possible within 45 days.

By choosing QMS to help you with your Cyber Essentials Plus Certification requirements, you can be confident that you are choosing a compliance process that delivers results with minimal fuss.

 

Latest Cyber Essentials Plus news

At QMS we are constantly updating our approach and process to meet the latest changes in how Cyber Essentials Plus works.