Data being processed by servers in a data centre

Cyber Essentials Plus

Overview

What is Cyber Essentials Plus?

Cyber Essentials is a UK government-endorsed standard designed to help businesses of all sizes minimise their security risk and demonstrate a commitment to the protection of personal information relating to employees, customers, partners and investors.

The Cyber Essentials scheme, part of the UK’s National Cyber Security Programme, is designed to help businesses of all sizes minimise their security risk and demonstrate a commitment to the protection of personal information relating to employees, customers, partners and investors. Cyber Essentials covers common security threats such as malware infections, social engineering attacks and hacking. It involves an annually verified assessment of key security controls that can help organisations to defend against common attack vectors that target enterprise-level and corporate IT systems.

Cyber Essentials Plus is the second level of the certification, requiring a hands-on technical verification of security controls. Redscan offers organisations the in-depth security knowledge and assessment services required to obtain Cyber Essentials Plus certification.

Protection of key assets

By highlighting common vulnerabilities affecting assets including firewalls, systems, websites and software applications, the Cyber Essentials scheme helps businesses reduce their information security risk.

Verified accreditation

Receiving independent verification of key security controls by Redscan demonstrates the effectiveness of systems, people and processes in defending against a wide range of cyber threats.

Enhanced reputation

Demonstrating to customers, partners and investors that cyber security is taken seriously improves outside perception and can provide a key competitive advantage.

Eligibility for public sector contracts

Cyber Essentials certification is mandatory for any business wanting to bid for a central government contract that involves the handling of sensitive or personal information.

CE Plus

Reasons to choose Cyber Essentials Plus

Cyber Essentials Plus certification is the level recommended for businesses that want to demonstrate a higher level of security assurance. To receive certification, organisations must permit Redscan to perform an on-site inspection to verify the findings of a questionnaire and conduct internal and external vulnerability assessments.

In-depth testing and insight

By performing internal and external vulnerability assessments as well as an on-site inspection of systems and policies, Redscan’s experts thoroughly investigate a business’s network to identify vulnerabilities that a self-assessment could easily overlook.

Tailored assessment

Independent Redscan assessment can be tailored to certify a whole organisation or sub-set of it. Cyber Essentials Plus requires appraisal of all network infrastructure including cloud services, bring your own devices (BYOD) and commercial applications.

Comprehensive reporting

After each assessment, Redscan produces a detailed report of key findings. This includes, as appropriate, any remediation steps required for a re-test to be conducted.

End-to-end assistance

Assistance every step of the way helps businesses complete the initial self-assessment questionnaire, as well as the on-site checks and vulnerability assessment conducted by Redscan.

Managed Detection and Response

Award-winning support to rapidly detect and respond to the latest threats 24/7

Assessment Services

Specialist engagements to uncover and address hidden cyber security risks

Managed Security Services

Expert help to manage and monitor your choice of security technologies

Get in touch

Complete the form for a prompt response from our team.

From the blog

From the blog Case studies Latest news

29th July 2021

Dangerous games: the cyber security threats to the Olympics

22nd July 2021

Security landscape and threat review: Q2 2021

20th July 2021

What is SOAR? And how does it improve threat detection and remediation?

14th July 2021

Kroll 2021 data breach outlook: “under-attacked” industries feel the heat

Hospitality Company

Securing a hospitality company’s continued global expansion

Asset Management Firm

Enhancing security visibility for a leading asset management firm

National Homebuilder

Ensuring threat visibility across a hybrid cloud network

Specialist Bank

Raising the bar by uncovering vulnerabilities across a bank’s estate

26th July 2021

Survey reveals 86% of UK businesses expect cyber-attacks to increase in next 12 months

A new survey has revealed that 86% of UK companies anticipate an increase in cyber-attacks over the next 12 months with phishing attacks seen as the biggest threat.

20th July 2021

IoT malware attacks rose 700% during the pandemic

A new study has revealed that IoT malware attacks increased by 700% during the pandemic. The research analysed IoT devices left on corporate networks when businesses changed to remote working.

12th July 2021

Cybercrime costing organisations around £1.29 million a minute

A new analysis of the volume of malicious activity on the internet has revealed that cybercrime costs organisations around $1.79m (£1.29m) every minute.

23rd June 2021

Disjointed and under resourced: cyber security across UK councils

Our UK council FOI report reveals a disjointed approach to cyber security across the sector, with councils reporting hundreds of data breaches annually and many failing to provide adequate security training for staff. Read our report here.

Contact Us

Cyber Essentials Plus

What is Cyber Essentials Plus?