.png)
In urgent need of assistance from our Incident Response team? Click below to email directly and get support.
Get Support
Set up regular vulnerability scans for Web Apps & Infrastructure with our innovative SecurePortal
Learn More
PTaaS Packages For All Businesses
Distribute, manage and monitor remediation tasks effortlessly with PTaaS, powered by SecurePortal
View PTaaS Options
SecurePortal 2.11 - Single Sign On (SSO) and Requested Upgrades
Read
Need Our Assistance?
We now offer Incident Response Retainers helping you reduce damage from a cyber attack
Read
What is Cyber Essentials and Why do You Need it?
Cyber Essentials is a UK Government led and industry-backed scheme that helps organisations of all sizes protect themselves against common cyber security threats. From as early as 2014, the UK Government required all suppliers bidding for contracts involving the handling of certain sensitive and personal information to be certified against the CE scheme.
There are currently two levels of certification, Cyber Essentials which is the basic level and Cyber Essentials Plus. Pentest People can help you understand critical infrastructure cyber security in order to secure the full certification at both levels including performing the certification assessment.
Want to Gain Cyber Essentials Certification?
Fill out our instant quote form to get a price on your Cyber Essentials journey, whether you need a little assistance, just the certification or a full guided service we have you covered!
We're a Certification Body For Cyber Essentials & CE+
Pentest People are a Cyber Essentials Certifying Body and can provide a consultancy service to help you at all stages of your Cyber Essentials accreditation journey.
We offer a range of different package options based on your needs and company size, allowing bespoke options no matter what you require.
Find Your Way to Pass - Cyber Essentials
Cyber Essentials Service Options
We know the world of cyber security is complicated, so starting your first Cyber Essentials journey isn't always easy. At Pentest People we offer 3 options to help you pass the CE assessment based on your requirements, take a look below and take your security seriously!
Start Your Quote
We offer fixed pricing with guaranteed support on all our Cyber Essentials Basic packages, giving your business the best chance to pass.
Support
Our Cyber Essentials Support package provides a helping hand from our dedicated CE consultants, with support throughout the certification and guides to help you pass with ease.
SurePass
Our Cyber Essentials SurePass package gives you everything you need to pass. A dedicated Cyber Essentials consultant, 1-2-1 time to help work through any major changes your team needs to implement and even continual support through vulnerability scanning, allowing you to increase your cyber security posture..
Support
For companies who require guidance through there Cyber Essentials Certification
Cyber Essentials Certification
Certification Badge For Website
25k Cyber Insurance
Dedicated Project Manager
2 Free Retests
2 Hours of Remote Support
3 Day Marking Time*
*from the time the customer submits their questionnaire details
SurePass
For companies who require guidance & on continuous support for their Cyber Essentials Certification
Cyber Essentials Certification
Certification Badge For Website
25k Cyber Insurance
Dedicated Project Manager
3 Free Retests
4 Hours of Remote Support
3 Day Marking Time*
*from the time the customer submits their questionnaire details
Get Your Cyber Essentials Certification Started!
Fill Out This Form to Get Your No-Obligation Quote
Find Your Way to Pass - Cyber Essentials Plus
Cyber Essentials Plus Service Options
We know the world of cyber security is complicated, so starting your first Cyber Essentials journey isn't always easy. At Pentest People we offer 3 options to help you pass the CE assessment based on your requirements, take a look below and take your security seriously!
Start Your Quote
Toggle the information below to see how much Cyber Essentials Plus will cost your business - company size doesn’t matter, one price for all!
Cyber Essentials Basic Inc.
Standard
Our Cyber Essentials Plus Standard package provides a helping hand from our dedicated CE consultants, with support throughout the certification and guides to help you pass with ease.
Premium
Our Cyber Essentials Premium package gives you everything you need to pass. A dedicated Cyber Essentials consultant, 1-2-1 time to help work through any major changes your team needs to implement and even continual support through vulnerability scanning, allowing you to increase your cyber security posture.
Standard
For companies who require guidance through their Cyber Essentials Plus Certification
Cyber Essentials Plus Certification
Certification Badge For Website
25k Cyber Insurance
Dedicated Project Manager
Cyber Essentials Plus Audit
2.5 Hours of Remote Support
Premium
For companies who require guidance & on continuous support for their Cyber Essentials Plus Certification
Cyber Essentials Plus Certification
Certification Badge For Website
25k Cyber Insurance
Dedicated Project Manager
Cyber Essentials Plus Audit
2 Retests
5 Hours of Remote Support
Enhanced Remediation Advice
Why Should You Get Cyber Essentials Accreditation?
Without being cyber essentials certified, businesses may face serious risks to the security of their online operations. Without certification, companies have no assurance that they are following best practices and have up-to-date measures in place to protect their data and systems from malicious actors.
Additionally, companies can also become subject to hefty fines if they are not able to demonstrate adequate security protocols for GDPR compliance. Being cyber essentials certified is an important step for any business looking to reduce its risk of a cyber security attack and ensure the security of its data and operations.
How Can Our Cyber Essentials Consultancy Services Help?
Our company specialises in guiding you through the process of achieving these certifications. We offer comprehensive services, tailored to your specific needs, ensuring seamless navigation through the complex world of cyber security.
By partnering with us, we empower you to take proactive steps towards securing your data, preventing breaches, and ultimately, safeguarding your business's future. Don't leave your security to chance. Take the first step towards achieving Cyber Essentials and Cyber Essentials Plus certifications today.
See What Our Clients Have to Say About our Professional Services
"Pentest People has been a trusted partner in our Information Security audits, helping us achieve ISO27001:2013 and Cyber Essentials certifications. Their expertise, professionalism, and
customer-focused solutions have greatly improved our ICT infrastructure.
I highly recommend Pentest People to any potential client."
“Pentest People were efficient, knowledgeable and very supportive of our organisation making the jump from Cyber Essentials to accreditation to the ‘Plus’ upgrade. They were great to communicate with, delivered as promised and we will certainly use again when re-certification comes round."
“The SecureGateway allowed Pentest People to perform a quality penetration test while the tester worked remotely. The results and data collected by the consultant were at the level we would expect from a standard test, showing no real difference other than allowing us to proceed as normal”
“Pentest People stand out in the field of penetration testing due to the skillset of people they have working there. We undertook a complex bespoke pentest with them which required a lot of pre-work in order to make sure it was scoped correctly and they took the time to come onsite to make sure all was correct prior to commencing. From my experience with them, they are very intelligent people with a deep understanding of the security landscape and we will continue to use them for future testing requirements”.
“Pentest People have provided us with a very streamlined testing service, that can be easily reviewed using their SecurePortal. I’m pleased with the quality of the testing report and it has enabled us to feel more confident in our network security”.
“We used Pentest People to assist us with our security testing. They truly understand this area extremely well and gave us great reassurance on areas that we needed to improve.
Pentest People are truly experts in the security field and we would highly recommend them. They have great depth of knowledge and breadth of experience”
"Pentest People perform Web Application and Infrastructure Penetration Testing for Pharmacy2U. They are always professional to engage with, provide an excellent level of service and the addition of the SecurePortal makes receiving and interrogating the results of the service very easy indeed.We look forward to working with them in the future and trust the work they deliver."
"Pentest People provided a thorough Web App, API, and Mobile App test, giving us clear insights into vulnerabilities. Their SecurePortal made post-test remediation straightforward & faster than previously used methods.
Following this, we opted for a Red Team Assessment, which further strengthened our security. Their expertise and structured approach helped us address key risks efficiently. A reliable and professional security partner."
""Pentest People supported us with a detailed application penetration test and forensic analysis on one of our key payment-related systems. Their consultants quickly identified underlying vulnerabilities and provided clear insight into how these issues could be addressed to strengthen the application’s overall security.Their investigation offered valuable technical clarity, helping us understand potential risks, remediate quickly, and implement measures to reduce the chance of future incidents.
The combination of testing and expert guidance gave us the assurance we needed and a clear path forward for improving our security posture.
The team were responsive, professional, and easy to work with throughout. We’re confident in the improvements made and would gladly work with Pentest People again."
Understand the Certifications
Whats The Difference Between Cyber Essentials or Cyber Essentials Plus?
Cyber Essentials
The initial level of Cyber Essentials certification is delivered through SecurePortal as a self-assessment questionnaire that covers the five technical controls and then an external vulnerability scan of your external facing network.
You are assessed against the answers to your questionnaire and the results of the external Penetration Test. Stage 1 certification awards the Cyber Essentials accreditation and the associated use of the logo.
Cyber Essentials Plus
The more advanced level of Cyber Essentials certification relies upon the same protections as Stage 1 but the certification is carried out on your business premises and also includes an internal vulnerability scan of a common workstation build.
Your antivirus protections both via the web and email are manually tested whilst onsite to ensure that your tools of choice are protecting the level of cyber security required to achieve Cyber Essentials Plus.
You are assessed against the answers to your questionnaire and the results of the external vulnerability scan. Stage 2 certification awards the Cyber Essentials Plus accreditation and the associated use of the logo.
In order to achieve Stage 2 certification, you have to first achieve Stage 1 certification.
Becoming Cyber Essentials Certified Opens Many Doors
Achieving Cyber Essentials Certification offers immense value for your business. It's not merely a badge of honor; it's a testament to your commitment to data security, protecting your business and your clients from cyber threats.
This certification showcases your proactive approach towards cyber security, giving you a competitive edge in today's digital landscape. It enhances your reputation, instills trust in your customers, and opens up new business opportunities, particularly with organisations that prioritise data security. Plus, it helps you meet contractual requirements that increasingly demand this certification. Don't let your business be left behind in the race towards robust cybersecurity.
Our Team Consists of NCSC Cyber Advisors
Our team is proud to include NCSC-certified Cyber Advisors, bringing unparalleled expertise and guidance to your Cyber Essentials (CE) journey. Our consultants are equipped with the knowledge and skills necessary to navigate the complexities of cyber security, ensuring your organisation achieves and maintains CE certification with confidence.
With a deep understanding of NCSC standards, our advisors offer not only technical proficiency but also exceptional customer service, making the process seamless and stress-free. Trust in our certified professionals to provide comprehensive support, from initial assessment to ongoing compliance, tailored to meet your specific needs.
Need More Info on Cyber Essentials?
Frequently Asked Questions
What do we receive once certified?
When you have undertaken your assessment and met all of the requirements of Cyber Essentials or Cyber Essentials plus you will receive the following: - An official PDF of your Cyber Essentials Certificate. - A compliant report detailing all findings from the assessment along with any recommendations where appropriate. - High-resolution Cyber Essentials logos along with branding guidelines on how to use the logos on your website and marketing materials. - Your organisation will be listed on the Government Website that shows your level of certification.
How long does certification take?
In the overall process, your team will spend around 2hours to complete the questionnaire as well as organising the audit. If you can fix the issues identified quicker then we can get you certified quicker.
What is the difference between Cyber Essentials and Cyber Essentials Plus?
Cyber Essentials is Stage 1 Consists of a Self Assessment Questionnaire and external vulnerability assessment of your Internet-facing infrastructure. Cyber Essentials Plus is Stage 2 extends Stage 1 by performing an onsite assessment of security controls including an internal authenticated scan of your workstations and mobile devices.
What is the Cyber Essentials Scheme?
Cyber Essentials is a scheme led by the UK Government to help organisation protect themselves against common cyber-security threats. There are two levels of certification that both demonstrate an ability to implement technical controls relating to information security.
Experienced Consultant Team
Our Penetration Testing Team are CREST Accredited & Includes CHECK Team Leaders
Experienced & Accredited Testing Team For All Our Services
Penetration testing is a key component of any effective cybersecurity strategy, and it requires well-trained professionals to execute. Our consultant team needs are highly trained in order to test your business for vulnerabilities and identify potential threats before they cause harm. Our team have a deep understanding of the systems and protocols involved in protecting against hackers, malware, and data breaches.
- CHECK Team Leaders
- CREST Accredited consultant teams
- Experts in all areas of cybersecurity
See What Our Clients Have to Say About our Professional Services
“Pentest People stand out in the field of penetration testing due to the skillset of people they have working there. We undertook a complex bespoke pentest with them which required a lot of pre-work in order to make sure it was scoped correctly and they took the time to come onsite to make sure all was correct prior to commencing. From my experience with them, they are very intelligent people with a deep understanding of the security landscape and we will continue to use them for future testing requirements”.
"Pentest People has been a trusted partner in our Information Security audits, helping us achieve ISO27001:2013 and Cyber Essentials certifications. Their expertise, professionalism, and
customer-focused solutions have greatly improved our ICT infrastructure.
I highly recommend Pentest People to any potential client."
“Pentest People were efficient, knowledgeable and very supportive of our organisation making the jump from Cyber Essentials to accreditation to the ‘Plus’ upgrade. They were great to communicate with, delivered as promised and we will certainly use again when re-certification comes round."
“The SecureGateway allowed Pentest People to perform a quality penetration test while the tester worked remotely. The results and data collected by the consultant were at the level we would expect from a standard test, showing no real difference other than allowing us to proceed as normal”
“Pentest People have provided us with a very streamlined testing service, that can be easily reviewed using their SecurePortal. I’m pleased with the quality of the testing report and it has enabled us to feel more confident in our network security”.
“We used Pentest People to assist us with our security testing. They truly understand this area extremely well and gave us great reassurance on areas that we needed to improve.
Pentest People are truly experts in the security field and we would highly recommend them. They have great depth of knowledge and breadth of experience”
"Pentest People perform Web Application and Infrastructure Penetration Testing for Pharmacy2U. They are always professional to engage with, provide an excellent level of service and the addition of the SecurePortal makes receiving and interrogating the results of the service very easy indeed.We look forward to working with them in the future and trust the work they deliver."
Learn Something New
Have a read of our blogs written by industry experts, covering topics from all areas in cyber.
What is the UK Cyber Security & Resilience Bill and Why Does it Matter to Your Business?
The UK’s Cyber Security & Resilience Bill aims to significantly strengthen national cyber defence by expanding regulations, enhancing incident reporting, and improving resilience across both public and private sectors. It introduces stricter security standards for a broader range of businesses, including Managed Service Providers (MSPs) and Small to Medium-sized Enterprises (SMEs), many of which were previously outside regulatory scope.
What Does The EU Cyber Resilience Act Mean for Your Organisation?
The EU Cyber Resilience Act marks a major shift in how digital products and software are regulated for cyber security. But what does it really mean for your organisation? Whether you're a software vendor, device manufacturer, or part of the supply chain, the CRA introduces new responsibilities, and penalties for non-compliance. This blog breaks down the essentials, explain who’s affected, and outline what your business needs to do to stay ahead.
Europe Launches EUVD: A Step Toward Cybersecurity Resilience and Strategic Autonomy
The European Union has introduced a new cyber security blueprint aimed at enhancing its collective resilience against large-scale cyber incidents. This initiative outlines a comprehensive framework for crisis management, detailing the roles of EU entities throughout the entire lifecycle of a cyber crisis, from preparedness and detection to response and recovery.
Cyber Security Incident Response: 5 Steps to Mitigate and Recover from Attacks
Learn how to protect your business with a clear, five-step Cyber Security Incident Response Plan. This guide covers how to assess damage, contain threats, restore systems, learn from attacks, and build a strong response strategy—so you can act fast, minimise impact, and stay secure.
.svg)
.webp)
