Cyber Essentials Plus

Cyber Essentials Plus is designed to help organisations of any size demonstrate their commitment to cyber security.

Why get Cyber Essentials Plus?

Cyber Essentials Plus helps you to guard against the most common cyber threats and demonstrates your commitment to cyber security. It enables your organisation to:

  • Reassure customers that you are working to secure your IT against cyber attack
  • Attract new business with the promise you have cyber security measures in place
  • Ensure you have a clear picture of your organisation’s cyber security level
  • Bid for government contracts which require Cyber Essentials or Cyber Essentials Plus certification

The requirements

Cyber Essentials Plus is an audited assessment, of your systems, and cyber security controls. The five controls examined are:

  • Access control
  • Firewalls
  • Secure configuration
  • Patch management
  • Malware protection

Certification is only achieved when the essential levels of protection are assessed and passed by an independent IASME Certification Body such as Cognisys.

Following on from your certification

Once you’ve achieved Cyber Essentials Plus, you’ll receive a certificate, which can be used to prove that you have essential Cyber security defences in place. You’ll also receive a Cyber Essentials Plus logo, which can be displayed on your website.

Both of these items provide reassurance for your stakeholders and means that you are free to bid for certain local and national government contracts.

Additionally, Cyber Essentials certificates issued in the previous 12 months are displayed on the NCS and IASME website.

Cyber Essentials is an annual process, and it’s vital to choose a partner who can make the recertification easier. Cognisys provides a number of tools, like SmartView, that make subsequent year’s audits, quicker and simpler.

In addition, we have a dedicated internal support team, that can help improve your application process from start to finish.

Why use Cognisys?

Some of the Cyber Essentials self-assessment questions can be difficult to understand if you do not have a technical IT background or you have a complex company structure.

IASME has certified that Cognisys are able to help you understand the assessment questions, how they relate to your company and what steps you need to take in order to achieve certification.

Our experienced team helps you plot a route to success and work with you side by side to make sure your accreditation process is as simple as possible.

We provide all the expertise, guidance and knowledge to give you the very best chance of achieving the standard and all our consultants are qualified cyber security practitioners.

Discover how we’ve helped leading organisations



Is bringing your own device to work a bad idea?

As ‘Bring Your Own Device’ or BYOD rises in popularity, with more than two-thirds of us using a personal device at work, it’s important for businesses to understand the security risk that this can pose.


What is attack path management?

In a world where identities are the new security perimeter, compromising identity platforms like AD and AAD provides the greatest payoff for attackers, ultimately giving them control of all users, systems and data within the organisation.


.ZIP domain registration: A risky gateway to nefarious outcomes

In the ever-evolving world of cybersecurity, understanding emerging threats is critical to maintaining a robust defence. One trend currently attracting attention is the registration of .ZIP domains.

Let’s make things happen

Fill in the form and one of our team will be in touch for a no-obligation discussion or quote regarding your requirements.
Leeds office

5 Park Place
Manchester office

The Sharp Project
Thorpe Road
M40 5BJ