Cyber Essentials

What is Cyber Essentials?

Cyber Essentials is the UK Government’s scheme to help organisations secure themselves against the ever increasing number of cyber threats. The scheme is overseen by the National Cyber Security Centre and IASME.

Why should your get Cyber Essentials?

Cyber Essentials is a business differentiator showing your organisation takes cyber security seriously, putting it at a competitive advantage over business rivals.

Cyber Essentials provides assurance that your organisation is enforces cyber security measures which protect it against common cyber attacks.

Cyber Essentials is mandatory for UK Government and Ministry of Defence contracts and is increasingly popular in the private sector. Like ISO9001 (Quality Management) and ISO27001 (Information Security), Cyber Essentials is a standard that organisations look for when carrying out due diligence checks on prospective suppliers.

Cyber Essentials comes with free Cyber liability insurance worth £25,000 (underwritten by AXA XL).

Cyber Essentials comes in two versions - Cyber Essentials and Cyber Essentials Plus.

What does Cyber Essentials involve?

Cyber Essentials involves the completion of an online questionnaire answering questions about the following five areas:

Secure Networking – is your network secure so that hackers are kept out?
Secure Configuration – are your devices and software secured so that they cannot be accessed by hackers?
Access Control – do you manage access to your data so that only staff with a "need to know" access it?
Malware Protection – are your devices are kept secure from viruses and ransomware?
Patch Management – are your devices and software are kept up-to-date with the latest security patches?

What does Cyber Essentials Plus involve?

Cyber Essentials Plus builds upon the Cyber Essentials assessment through a technical audit of your organisation’s infrastructure to provide demonstrable assurance that it is protected against cyber threats.

This technical audit examines the following eight aspects:

Desktops, laptops, and servers – are they patched and are their applications up-to-date?
Mobile phones and tablets – are they patched and are their applications up-to-date?
Internet facing gateways - do they have vulnerabilities that attackers could find and exploit?
Malware Protection - is up-to-date so it can detect and respond to viruses and ransomware?
Email system - can it detect and stop malicious attachments?
Web browsers - can they detect and stop malicious files?
Cloud Services – is access protected by Multi-Factor Authentication?
Admin Access – do staff access systems under user accounts or as admins?

How Bergerode Consulting can help

Bergerode Consulting is the leading Cyber Essentials certification body in North West England and we can help your organisation through the entire process of meeting the Cyber Essentials and Cyber Essentials Plus standards.

We have extensive experience in helping organisations of all sizes and business areas with Cyber Essentials and Cyber Essentials Plus process so you can rest assured that you are in safe hands.


The statutory price for Cyber Essentials is dependent upon the size of your organisation:

£300 ex.VAT for organisations with 1 to 9 employees
£400 ex.VAT for organisations with 10 to 49 employees
£450 ex.VAT for organisations with 50 to 249 employees
£500 ex.VAT for organisations with 250 or more employees

These prices include 1 hour of consultancy and help. Should you require more assistance then this can be provided at a competitive price.

The price for Cyber Essentials Plus is dependent on the size and complexity of your organisation, and we are confident that we can offer a competitive price, so get in touch today.