Every strong strategy starts with nailing the basics

We can help you achieve Cyber Essentials, Cyber Essentials Plus and IASME Governance.

Cyber Essentials Certification Birmingham

Cyber Essentials and Cyber Essentials Plus is a NCSC and government-backed scheme which establishes the basics of security which all businesses should follow.
As a long-established Cyber Essentials assessor, Equilibrium can help you achieve Cyber Essentials, strengthen your security measures, and demonstrate to your customers that you are following best practice.

Equilibrium Security are one of the few Cyber Essentials Certification bodies within the Midlands. We have been working alongside IASME conducting Cyber Essentials and Cyber Essentials Plus assessments since 2016.

Ready to achieve your security goals? We’re at your service.

Whether you are a CISO, an IT Director or a business owner, Equilibrium has the expertise to help you shape and deliver your security strategy.

Cyber Essentials 5 Key Security Controls

Firewalls and routers

A firewall must be in place to protect your internet connected devices.

Software updates

Regularly update your applications & critical systems to identify & remediate vulnerabilities.

Malware protection

Protect your organisation from virus’s, malware, and other cyber-risks.

Access controls

Reduce the likelihood of unauthorised access, by controlling who can access sensitive data.

Secure configuration

Prevent hackers gaining unauthorised access to your systems.

Cyber Essentials and Cyber Essentials Plus

The Cyber Essentials Scheme

The Cyber Essentials scheme is a self-assessment questionnaire that is completed via an online portal. The questions are based around its five key security controls, their aim to review your current security posture and identify areas for improvement.
Our expert security consultants provide remote support to guide you through the process and help you achieve the certification quickly and painlessly.  

Cyber Essentials Plus

Cyber Essentials Plus is the next stage on from the basic Cyber Essentials Self-Assessment Certification. It tests an organisations security against the information obtained in the self-assessment Cyber Essentials questionnaire. As part of the certification, we will run a series of penetration tests and carefully managed attacks to test the effectiveness of your security controls.
If there are areas that we identify that are in breach of the assessment, we will provide remediation actions that you will need to apply prior to us issuing the certification. Equilibrium Security will then issue the certification for the Cyber Essentials Plus, which will be valid for 12 months.

Why choose Equilibrium?

The Cyber Essentials process

Step 1
Define the scope

Before we can provide a quote or proceed with the assessment we need to understand your environment so that we can fully define the technical scope of what the test will cover.

Step 2
Complete the Cyber Essentials Questionnaire

You can then move onto populating the online questionnaire. Before this is submitted, our consultants will review your answers to check they meet the scheme’s criteria. If changes are required, we provide detailed guidance on areas which need improvement. Once successful, you will be issued with a Cyber Essentials certificate for 12 months.

Step 3
Technical Cyber Essentials Plus audit

Our experts will remotely conduct external and internal vulnerability tests, as well as a series of other security checks to test the information obtained in your Cyber Essentials questionnaire.

Step 4
Remediation

If vulnerabilities are discovered, or other areas of non-compliance, we will provide detailed remediation guidance which needs to be applied within 30 days of the Cyber Essentials Plus assessment.

Step 5
Cyber Essentials Plus certification

Once you have followed all remediation steps, we will conduct a retest to check you comply with the CE+ criteria, you will then be awarded your CE+ certificate for 12 months.

The benefits of Cyber Essentials

Win new business

Cyber Essentials helps to assure new customers that you take the security of your business seriously and follow industry best practice.  

Public sector contracts

Cyber Essentials and Cyber Essentials Plus permits you to work with the government and MOD.

Cyber Liability Insurance

Benefit from up to £25,000 worth of cyber insurance as part of the certification, conditions apply.

Reduce the risk of a breach

Improve cyber-resilience by implementing the baseline security requirements of the Cyber Essentials five security controls.

How can we help?

Equilibrium is a Certification Body for The IASME Consortium, the Cyber Essentials Partner to the National Cyber Security Centre (NCSC). We can offer Cyber Essentials, Cyber Essentials Plus, IASME Governance and GDPR Readiness Assessments as a Certification Body.

If you would like to find out more about our Cyber Essentials pricing please arrange an expert call or call us on 0121 663 0055.

Frequently Asked Questions

The simple answer is no. Before you can move onto the Cyber Essentials Plus, you must first pass the Cyber Essentials basic certification, as the Plus audit assesses the information provided in your Cyber Essentials questionnaire. Once CE basic is achieved, you must pass your CE+ within 90 days.

Cyber Essentials basic is a self-assessed and independently verified questionnaire. The assessment has 70 questions which qualify that your current approach to securing your business is in-line with the CE framework. Cyber Essentials Plus provides a higher level of assurance, it involves us auditing your systems utilising many vulnerability tools to test the effectiveness of the security measures in place.

Cyber Liability Insurance is provided as part of the Cyber Essentials certification package on an ‘opt-in’ basis. The cyber insurance is available for businesses with an annual turnover of under 20 million, conditions apply.

Yes, Cyber Essentials and Cyber Essentials Plus certificates are due for renewal after 12 months. If you choose not to renew, your business will be removed from the NCSC’s ‘certified organisations’ list, you will also lose your cyber insurance and ability to work with public sector companies.