Loading
Approved Assessor

Cyber Essentials Certification

Protect your business, win government contracts and demonstrate your commitment to cyber security with the UK's leading certification scheme.

Start Your Certification See the Process
What Is Cyber Essentials?

The UK Government's Cyber Security Standard

Cyber Essentials is a government-backed scheme that helps organisations protect themselves against the most common cyber threats. It provides a clear statement of the basic controls all organisations should implement to mitigate risk from internet-based threats.

Cyber Essentials is a self-assessment certification verified by an approved assessor. It covers five key technical controls that, when implemented correctly, can prevent around 80% of cyber attacks.

Cyber Essentials Plus includes all of the above plus a hands-on technical verification. An assessor tests your systems directly to confirm the controls are working effectively, providing a higher level of assurance.

Cyber security shield protecting digital infrastructure
Why You Need It

The Business Case for Cyber Essentials

Certification is not just a badge -- it is a competitive advantage that opens doors and builds trust.

Government Contracts

Cyber Essentials is mandatory for many government and MOD contracts. Without it, you are locked out of lucrative public sector opportunities worth billions annually.

Insurance Benefits

Many cyber insurance providers offer reduced premiums for certified businesses. Some policies require Cyber Essentials as a minimum standard before they will provide cover.

Client Trust

Certification demonstrates to customers, partners and stakeholders that you take security seriously. It is increasingly required in supply chain due diligence processes.

Reduce Breaches

Implementing the five controls blocks the vast majority of common attacks. Certified organisations are statistically far less likely to suffer a successful breach.

GDPR Alignment

Cyber Essentials helps demonstrate compliance with GDPR technical requirements, providing evidence of appropriate security measures for data protection.

Competitive Edge

Stand out from competitors who lack certification. In tenders and proposals, Cyber Essentials accreditation can be the deciding factor between winning and losing.

Our Process

Five Steps to Certification

Our streamlined process takes the complexity out of certification. Most businesses achieve Cyber Essentials within two to four weeks.

01

Gap Analysis

We assess your current security posture against the five Cyber Essentials controls: firewalls, secure configuration, access control, malware protection and patch management.

02

Remediation

Our engineers work with your team to close any gaps. We provide clear, prioritised recommendations and can implement fixes directly if needed.

03

Self-Assessment Support

We guide you through the official self-assessment questionnaire, ensuring every answer is accurate and evidence is properly documented.

04

Assessment & Verification

As an approved assessor, we review your submission and, for Plus certification, conduct hands-on technical testing of your systems and defences.

05

Certification & Ongoing Support

Receive your official certificate and badge. We provide ongoing support to maintain compliance and prepare you for annual recertification.

Pricing

Transparent, Competitive Pricing

Choose the package that suits your business. All prices include our expert guidance and support throughout the process.

Cyber Essentials

From £300

+ VAT per assessment

  • Gap analysis & readiness review
  • Self-assessment questionnaire support
  • Remediation guidance
  • Official certification
  • Digital badge for marketing
  • 12-month validity
Get Started
Most Popular

Cyber Essentials Plus

From £1,500

+ VAT per assessment

  • Everything in Cyber Essentials
  • Hands-on technical testing
  • Vulnerability scanning
  • Simulated phishing test
  • Detailed technical report
  • Higher assurance level
  • Priority support
Get Started

Complete Bundle

From £2,500

+ VAT per assessment

  • CE & CE Plus certification
  • Full remediation service
  • Policy documentation
  • Staff awareness training
  • Quarterly security reviews
  • Dedicated account manager
  • Recertification support
Get Started
Accreditation

We Are an Approved Cyber Essentials Assessor

Record Group is officially accredited to assess and certify organisations under the Cyber Essentials scheme. You are in expert hands from start to finish.

IASME Certified Assessor
Cyber Essentials Accredited
NCSC Assured Service
FAQ

Frequently Asked Questions

What is the difference between Cyber Essentials and Cyber Essentials Plus?

Cyber Essentials is a self-assessment questionnaire verified by an assessor. Cyber Essentials Plus includes everything in the basic scheme plus an independent, hands-on technical assessment of your systems. Plus provides a higher level of assurance and is often required for more sensitive contracts.

How long does certification take?

Most organisations achieve Cyber Essentials within two to four weeks. Cyber Essentials Plus typically takes four to six weeks depending on the size and complexity of your IT estate. If remediation work is needed, this may extend the timeline.

Is Cyber Essentials mandatory?

It is mandatory for government contracts involving the handling of certain sensitive and personal information. Beyond that, it is strongly recommended by the NCSC and increasingly expected by large organisations as part of supply chain requirements.

How long does the certification last?

Both Cyber Essentials and Cyber Essentials Plus certifications are valid for 12 months. Annual recertification is required to maintain your accredited status. We provide reminders and recertification support.

What are the five technical controls?

The five controls are: (1) Firewalls and internet gateways, (2) Secure configuration, (3) User access control, (4) Malware protection, and (5) Security update management (patching). Together, these controls address the most common attack vectors.

Do you support organisations outside the West Midlands?

Yes. While we are based in the West Midlands and Gloucestershire area, we support businesses across the entire UK. Much of the assessment process can be conducted remotely, and we travel to client sites for Plus assessments as needed.

Can you help if we fail the assessment?

Absolutely. If gaps are identified during the assessment, we provide detailed remediation guidance and can implement the necessary changes for you. We then re-assess at no additional charge to ensure you achieve certification.

Start Your Certification Today

Join hundreds of businesses who have achieved Cyber Essentials certification with Record Group. Protect your organisation, win new contracts and build trust.

Book a Free Consultation Explore Cyber Security Services