How do you achieve Cyber Essentials Plus?

The first thing you need to do to achieve Cyber Essentials Plus certification is to gain Cyber Essentials certification.

You will then be audited (either remotely or on-site) by a certification body, such as URM Consulting. If the audit reveals no gaps, you will be awarded the Cyber Essentials Plus certification.

If there are gaps identified, you will have 15 days to fix them and go through the assessment again. If you do not pass this time, you will need to make a fresh application and pay for it again.

One of the great things about Cyber Essentials is that it is a targetable standard, so you always know exactly where you are.

Charity

Apply for Cyber Essentials certification Apply for Cyber Essentials Plus

Get practical guidance on preventing common cyber-attacks

Get practical guidance on how to prepare for and achieve Cyber Essentials and Cyber Essentials Plus certification, and protect your organisation against these attacks.

related BLog

Lexcel: Deconstructing Your Information Management and Security Policy

Published on

16 Jun

2025

URM explains each control law firms must include in an information management and security policy that complies with the Lexcel Practice Management Standard.

Cyber Security

Published on

6/6/2025

Understanding Lexcel and the Specialist Quality Mark (SQM): How Cyber Essentials Can Benefit Your Practice

URM’s blog explores how Cyber Essentials can help your legal practice enhance its security posture and achieve/maintain its SQM or Lexcel accreditation.