Exciting news: British Assessment Bureau will rebrand as Amtivo in Autumn 2026! Find out more here >>

Cyber Essentials and Cyber Essentials Plus Certification

Government-backed cyber protection for your business

Mitigate common attack risks and improve your company’s credentials with the correct security. Cyber Essentials and Cyber Essentials Plus certifications demonstrate your commitment to robust cyber security standards.

amtivo feefo rating

Request a Quote

Enter your details below to get started.

If you are just starting your Cyber Essentials journey, it is important to understand the options available to you. We outline the different routes, levels, and what to consider before applying. Our Cyber Essentials standard page may help you decide which approach best suits your organisation’s size, complexity, and risk profile.

If you are ready to focus on the certification itself and take the next step towards demonstrating your commitment to cyber security, you are in the right place. Below you will find clear guidance on the certification process, what is required, and how to get started with confidence.

What Are the Benefits of Cyber Essentials & Cyber Essentials Plus Certifications?

  • Certification gives you peace of mind that your defences will protect against the vast majority of common cyber attacks.
  • Stand out from competitors, retain existing customers, and win more business.
  • Increase credibility and reputation, giving customers more confidence to share information with you.
  • Raise staff awareness of threats, reducing overall risk levels.
  • Improve business continuity management.
  • Tender for contracts with the MOD, NHS, and central government.
  • Reduce your insurance premiums by improving your resilience to cyber threats.
  • Drive efficiencies throughout your organisation, helping to improve productivity.
Cyber Essentials Certification

An Added Benefit: Cyber Liability Insurance

Achieving Cyber Essentials certification through Amtivo brings more than a recognised security standard – eligible organisations also receive access to Cyber Liability Insurance at no additional cost.

UK-domiciled organisations with a turnover under £20 million that complete self-assessed Cyber Essentials certification for their whole organisation are entitled to this cover. It is underwritten by American International Group UK Limited (AIG) and administered by Sutcliffe & Co Insurance Brokers.

What the cover includes

  • Up to £25,000 total limit of indemnity, with a 24-hour incident response helpline. Cover extends to:
  • Liability claims
  • Event management costs
  • Extortion threats
  • Regulatory investigations
  • Business interruption
  • Network interruption expenses

What to be aware of

A £1,000 excess applies (£5,000 for US or Canada-related claims), and a six-hour Network Interruption retention. Money stolen via electronic means or cyber fraud is not covered. The £25,000 limit may not be sufficient for all incidents, and higher limits may be available upon request.

A full policy summary is provided upon certification. Organisations should consult their insurance broker to assess whether this coverage is appropriate for their needs.

How to Become Cyber Essentials Certified

Cyber Essentials is a self-assessed certification scheme, making it a streamlined and accessible way for organisations to demonstrate that they meet the five key technical security controls. Below is an overview of the certification process, outlining the main stages from initial assessment through to certification and annual renewal.

STEP 1
STEP 2
STEP 3
STEP 4
STEP 5
Identify requirements Assess your current position against the five critical security controls and receive credentials for the online questionnaire.
Develop cyber security policy Identify weaknesses and determine where improvements are required. Create initiatives to address priority risks and gaps.
Plan and implement Use the gap analysis to identify actions and best practices for implementing improvements and test success.
Complete and submit self-assessment questionnaire Provide evidence demonstrating that your cyber security controls meet the five critical security goals.
Certification and annual renewal If successful, you will receive certification within twenty-four hours. Certification should be renewed annually.

How to Become Cyber Essentials Certified

STEP 1
Identify requirements Assess your current position against the five critical security controls and receive credentials for the online questionnaire.
STEP 2
Develop cyber security policy Identify weaknesses and determine where improvements are required. Create initiatives to address priority risks and gaps.
STEP 3
Plan and implement Use the gap analysis to identify actions and best practices for implementing improvements and test success.
STEP 4
Complete and submit self-assessment questionnaire for audit Provide evidence demonstrating that your cyber security controls meet the five critical security goals.
STEP 5
Certification and annual renewal If successful, you will receive certification within twenty-four hours. Certification should be renewed annually.

Ready to start your self-assessment?

Take the first step towards Cyber Essentials certification and strengthen your cyber security.

Get Started With Cyber Essentials
website icon

How to Become Cyber Essentials Plus Certified

Cyber Essentials Plus builds on Cyber Essentials by adding an independent technical assessment to verify that your controls are working effectively in practice. You must first achieve Cyber Essentials certification before progressing to Cyber Essentials Plus, which is externally assessed rather than self-certified.

STEP 1
STEP 2
STEP 3
STEP 4
STEP 5
Confirm your existing Cyber Essentials certification Provide a valid Cyber Essentials self-assessment certificate issued within the last three months.
Complete scoping meeting with assessor Information provided supports planning of the technical assessment.
In-depth assessment takes place An assessor will review and test your security protections based on your application.
Certificate awarded Successful organisations receive confirmation of certification.
Annual renewal Cyber Essentials Plus should be renewed annually.

How to Become Cyber Essentials Plus Certified

STEP 1
Confirm your existing Cyber Essentials certification Provide a valid Cyber Essentials self-assessment certificate issued within the last three months.
STEP 2
Complete scoping meeting with assessor Information provided supports planning of the technical assessment.
STEP 3
In-depth assessment takes place An assessor will review and test your security protections based on your application.
STEP 4
Certificate awarded Successful organisations receive confirmation of certification.
STEP 5
Annual renewal Cyber Essentials Plus should be renewed annually.

Upgrade to Cyber Essentials Plus

Take the next step with independently verified certification and demonstrate a higher level of cyber security assurance.

Get A Cyber Essentials Plus Quote
website icon

How Much Does Cyber Essentials Cost?

Packages start from £320 + VAT.

Cyber Essentials Plus includes a technical assessment and is quoted individually based on scope and systems.

To find out more on the cost of Cyber Essentials Plus for your business, contact our team to request a quote.

The benefits of Cyber Essentials Plus

How Long Does Certification Take?

Most organisations complete Cyber Essentials within a few days.

Cyber Essentials Plus has no fixed timeframe. The initial assessment takes between 1–3 working days, depending on the size and complexity of your business and is booked usually within 14 days after your Cyber Essentials certificate is confirmed. Achieving certification is dependent on how quickly any issues identified during the assessments are remediated but it must be completed within 90 days of your Cyber Essentials certificate date.

Understanding Cyber Essentials Plus

Cyber Essentials Certification FAQs

Get in Touch

Secure your business’s future, unlock new contracts, and build customer trust.

Request a quote or speak to our team today

Sign Up to Our Newsletter

Enter your details below to stay up to date with all the latest certification news and expert insights.

Related Standards

ISO 27001

Discover ISO 27001, the global standard for information security management, safeguarding data integrity, confidentiality, and availability.

ISO 42001

Learn about ISO 42001, the first international standard outlining the requirements for Artificial Intelligence Management Systems (AIMS).

ISO 14001

ISO 14001 is a globally recognised standard for Environmental Management Systems, helping organisations improve sustainability & reduce environmental impact.

ISO 22301

Get in touch with Amtivo now to find out how we can help your business to become ISO 22301 certified.

ISO 9001

Monitor and manage quality. Streamline your operations. Reduce your costs.