What is the difference between Cyber Essentials and Cyber Essentials +?

Cyber Essentials and Cyber Essentials Plus are both UK government-backed cybersecurity certification schemes that aim to help organizations protect themselves against common cyber threats. The primary difference between the two is the level of assurance and the assessment process:

Cyber Essentials: This is a self-assessment certification. Organizations fill out a questionnaire about their cybersecurity practices. Once submitted, the questionnaire is reviewed by an external certifying body to ensure that the organization meets the necessary requirements. The focus is primarily on basic cyber hygiene.

Cyber Essentials Plus: This involves a more rigorous assessment process. In addition to the self-assessment questionnaire, it includes hands-on technical verification. This means that an independent expert will visit the organisation (or do a remote assessment) to carry out tests on the systems to ensure they are secure against basic cyber threats. It provides a higher level of assurance compared to the basic Cyber Essentials certification.

In summary, while both certifications aim to ensure organisations have basic cybersecurity measures in place, Cyber Essentials Plus offers a more detailed and hands-on verification process.

For more information contact us on 01444 871200 or email hello@abcom.co.uk