Cyber Essentials Certification FAQs
Posted 28th June 2022
Cyber Essentials is a government backed scheme that enables companies to prove that they take cybersecurity seriously. Designed for small and medium sized businesses, the scheme makes it easier for clients to check that the businesses they work with are taking every precaution to keep their data safe.
What are the benefits of Cyber Essentials Certification?
Holding Cyber Essentials Certification has a number of advantages. Firstly, your business can show its clients and customers that you take keeping their data safe seriously. This also helps with GDPR compliance as, if you suffer a data breach, you can prove to the ICO that your company has taken all precautions seriously.
From a business perspective, Cyber Essentials Certification can also open doors to lucrative clients and contracts. Many government departments now insist that suppliers in their supply chain hold Cyber Essentials, additionally local authorities and NHS trusts are also adding the certification to their supplier requirements.
Finally, you may also find that other Cyber Essentials certified businesses will be more likely to want to do business with you. The Cyber Essentials website lists all the businesses that have completed the certification, making it easier to find likeminded companies to work with.
What does Cyber Essentials cover?
To achieve Cyber Essentials certification, your company must show that it is compliant in five key areas:
- Security Configuration
- User Access Controls
- Malware Protection
- Patch Management
These areas cover all aspects of your business’ cyber security and operating systems, ensuring that everything is up-to-date and managed effectively.
How does the Cyber Essentials certification process work?
In order to achieve Cyber Essentials certification, you will need to complete a self-assessment questionnaire which is signed by a person with significant control in your business to confirm that the answers are true. Once this is completed, a qualified assessor, like LP Networks, will evaluate your responses. The questionnaire is quite technical, which is why we offer guidance for any businesses looking to become certified.
If you pass, your business receives a certificate and can display the Cyber Essentials logo on its website. If you fail, you will receive feedback on areas that need to be addressed before you reapply.
How long does it take to complete Cyber Essentials?
Businesses have six months to complete their assessment from the date of application. Once the self-assessment has been completed it takes between 1-3 days to receive certification. If a business fails, they have 3 days to fix any issues that have arisen and resubmit.
How long does Cyber Essentials certification last for?
Cyber Essentials certification lasts for 12 months, so businesses have to reapply every year. However, the process is less time consuming than the initial application. Again, for reapplications, LP Networks are available to provide guidance and assistance.
Find out more
LP Networks are an accredited Cyber Essentials Accreditation Body and can help you complete the required paperwork for certification. Alongside this, we also provide the services that you may need to support your application. Get in touch with our team to find out more.