Cyber Essentials has just undergone the largest update since its launch in 2014.
In December 2021, IASME and the NCSC announced a new tiering system for the pricing of the Cyber Essentials certification. The tiering structure is to reflect the increasingly complex nature of assessments for larger organisations.
The new pricing structure is based on the number of employees working for an organisation, instead of the flat rate fee. To achieve this, they have followed the internationally recognised definition for micro, small, medium and large enterprises.
The new prices from 24th January 2022 are:
Micro organisations: £300 +VAT (0-9 employees)
Small organisations: £400 +VAT (10-49 employees)
Medium organisations: £450 +VAT (50-249 employees)
Large organisations: £500 +VAT (250+ employees)
*The cost of Cyber Essentials Plus remains unchanged.
The technical requirements to obtain Cyber Essentials or Cyber Essentials Plus have also been updated. The revisions help to clear up grey areas in the specifications and to continue to protect organisations in an evolving threat landscape from the most common cyber attacks.
We have designed a tool to quickly highlight any non-conformities to the requirements for Cyber Essentials. Providing visual indicators into some of the key control areas and giving customers an assessors eye view of their systems.
Data Connect are an experienced certification body for both standards and our dedicated team have extensive knowledge in assisting organisations through the certification process. In December, we hosted a detailed webinar explaining all new requirements, debunking common mistakes around Cyber Essentials and how organisation can prepare for any upcoming modifications. If you would like to watch the recording, please click here. Alternatively, please click here to get in contact.