Cyber Essentials scheme icon

Cyber Essentials scheme

Certified by CREST, we can help you achieve Cyber Essentials and Cyber Essentials Plus certification.

Cyber Essentials is a government-backed scheme to help organisations of all sizes protect themselves against common cyber-attacks. Gaining your certification through Claranet Cyber Security unlocks significant additional value and avoids the hidden costs of off-the-shelf offers.

Cyber Essentials questions the very basic security hygiene a company should adopt to prevent an opportunist-style attack.

Boundary firewalls and internet gateways

Best practice setup of devices are designed to prevent unauthorised access to, or from, private networks.

The Cyber Essentials five key mandatory controls

Access control

Ensuring that only those who should have access to systems do have access and at the appropriate level.

Secure configuration

Ensure that systems are configured in the most secure way for the needs of the organisation.

Malware protection

Ensuring that virus and malware protection is installed and up-to-date.

Patch management

Ensuring the latest supported versions of applications are used and that all correct patches are applied.

Demonstrate your commitment to cybersecurity

Cyber Essentials (Stage One)

  • We will help you to define the scope and complete the Cyber Essentials questionnaire.
  • We will check your answers and perform an external vulnerability assessment to verify that your IT is suitably secure, and that it meets the standards set by Cyber Essentials.
  • Once you have passed, you will be awarded your Cyber Essentials certificate.

Cyber Essentials (Stage Two)

Having completed Cyber Essentials Stage One, an organisation may choose to undergo a more thorough assessment that focuses on an internal security assessment of end-user devices. We directly test that individual controls have been implemented correctly and recreate various attack scenarios to determine whether a system compromise, using basic capabilities, can be achieved.


CREST is a not-for-profit organisation that serves the needs of a technical information security marketplace that requires the services of a regulated professional services industry. CREST has worked closely with the government to develop the technical Cyber Essentials assessment framework for the Cyber Essentials scheme.

Our accreditations

Cyber essentials
ISO 27001
CEH Accreditation
CCISO Accreditation
CISSP Accreditation
CRISC Accreditation
OSCE Accreditation
OSCP Accreditation