Cyber Essentials

Certification includes £25,000 Cyber Liability Insurance*

As a leading IASME-Accredited Cyber Essentials, Cyber Essentials Plus and IASME Certification Body having certified over 3000 UK businesses, we can help you certify in the quickest and most cost effective way.

Cyber Essentials is a UK Government certification which allows businesses to demonstrate to their customers, suppliers, investors and insurers that they have implemented essential security controls to manage their cyber risk. Cyber Essentials can reduce your risk of attack by up to 80%.

Cyber Essentials is also a great first step in helping businesses to achieve GDPR compliance which came into force on May 25 2018.

In addition, the IASME Governance standard can offer an affordable way to show your commitment to GDPR compliance and cyber security.

IASME was developed over several years during a government funded project to create a cyber security standard which would be an affordable and achievable alternative to the international standard, ISO27001.

The IASME Governance standard allows the small companies in a supply chain to demonstrate their level of cyber security for a realistic cost and indicates that they are taking good steps to properly protect their customers information.

The IASME Governance assessment includes a Cyber Essentials assessment and is available either as a self assessment or on-site audit. Since the 1st March 2017, it has also included an optional assessment against the GDPR requirements.

NEW Feb 2021 | Internet of Things (IoT) Security Assured scheme

The IoT Security Assured scheme is a vital tool for manufacturers to show alignment with upcoming UK legislation and European standards and also to reassure customers that the device they have purchased has the most important security controls in place.

The IoT Security Assured scheme is aligned with the European technical standard for IoT security, ETSI EN 303 645, and with the proposed UK IoT security legislation and guidance. It is also mapped to the IoTSF Security Compliance Framework.

Within the IoT Security Assured scheme, there are three levels of security that a device can be certified to: Basic (aligned with proposed UK legislation), Silver (aligned with ETSI mandatory requirements and data protection provisions) or Gold (aligned with ETSI recommended requirements and data protection provisions).  

The assessment consists of a set of simple questions about the security controls in place on the connected device and any associated services.  A company board member must sign a declaration to confirm that the answers are all true. Once completed, a trained assessor will review the answers and give feedback on any aspect that is not compliant.  If the assessment shows that the device meets the security requirements, the organisation will be provided with a certificate and badge for the relevant level to be placed on product packaging to reassure purchasers that their device has that level of security.

The scheme has been designed specifically to be accessible to smaller organisations, micro-businesses and start-ups, as well as larger, more established manufacturers. It will also enable organisations to  verify the security of connected devices in their supply chain.

Why CNS?

Unlike other providers, our cyber security team are highly accredited and experienced network penetration testers and infrastructure specialists who will work with you to address any areas of weakness prior to submission. 

Our security accreditations include: CESG CCP accredited security team, EU GDPR Foundation Qualified, Offensive Security Certified Professional, Certified Cyber Forensics Professional (CCFP), Certified Information Systems Security Professional (CISSP), Tiger Qualified Security Team Member (QSTM) and Cisco Certified Internetwork Expert (CCIE)

* Subject to meeting criteria