JDI-UK

JDI-UKJDI-UKJDI-UK

JDI-UK

JDI-UKJDI-UKJDI-UK
  • Home
  • IT Support
  • Cyber Security
  • GDPR Services
  • Consultancy Services
  • More
  • More
    • Home
    • IT Support
    • Cyber Security
    • GDPR Services
    • Consultancy Services
    • More
  • Home
  • IT Support
  • Cyber Security
  • GDPR Services
  • Consultancy Services
  • More

Understanding Cyber Essentials

Government Contracts

What is Cyber Essentials?

Cyber Essentials is a foundational cybersecurity certification that demonstrates an organisation’s commitment to protecting itself against common online threats. For any company—regardless of size or sector—it signals to clients, partners, and regulators that basic security controls are in place, such as firewalls, secure configurations, access management, malware protection, and patching. In today’s threat landscape, where reputational damage and data breaches can cripple operations, Cyber Essentials isn’t just a badge—it’s a business imperative. It builds trust, supports compliance, and is often a prerequisite for bidding on government contracts, making it a strategic asset for growth and resilience.

Is Cyber Essentials a mandatory?

In the UK, Cyber Essentials certification is mandatory for organisations that:

  • Bid for certain government contracts, especially those involving the handling of sensitive or personal information. This includes contracts with departments such as the Ministry of Defence (MoD), NHS, and other public sector bodies under the Public Procurement Notice (PPN) 01/14.
  • All UK law firms that hold a Criminal Legal Aid contract will be required to have Cyber Essentials certification in order to continue delivering services under the Legal Aid Agency (LAA).
  • Operate within the government supply chain, where Cyber Essentials is often a prerequisite to demonstrate baseline cyber hygiene and protect against common threats.
  • Provide services involving IT infrastructure, cloud platforms, or data processing for public sector clients. These organisations must show they meet minimum security standards to be considered for procurement.

While not legally required for all businesses, many private sector organisations now request Cyber Essentials certification from their suppliers to ensure robust cybersecurity practices across their supply chain. It's increasingly seen as a mark of trust and professionalism, especially for SMEs looking to win contracts or build credibility.

What certification is available

There are two tiers:

  • Cyber Essentials (Basic): Self-assessment questionnaire reviewed by a certification body.
  • Cyber Essentials Plus: Includes the same questionnaire but adds a technical audit of your systems by an external assessor.

Cyber Essentials Certification: Step-by-Step

Choose Your Certification Level

Choose Your Certification Level

Choose Your Certification Level

There are two tiers:

  • Cyber Essentials (Basic): Self-assessment questionnaire reviewed by a certification body.
  • Cyber Essentials Plus: Includes the same questionnaire but adds a technical audit of your systems by an external assessor.

Preparation Phase

Choose Your Certification Level

Choose Your Certification Level

Ensure you meet the five technical control areas:

  1. Firewalls and internet gateways
  2. Secure configuration
  3. Access control
  4. Malware protection
  5. Patch management

Select a Certification Body

Choose Your Certification Level

Complete the Self-Assessment Questionnaire

  • We only get you certified through recognised certification boards 


Complete the Self-Assessment Questionnaire

(Optional) Upgrade to Cyber Essentials Plus

Complete the Self-Assessment Questionnaire

Submit answers via the certification boards portal.

• Sign a declaration confirming the accuracy of your responses.

• The certification body reviews and either approves or requests changes.


(Optional) Upgrade to Cyber Essentials Plus

(Optional) Upgrade to Cyber Essentials Plus

(Optional) Upgrade to Cyber Essentials Plus

  • Undergo a technical audit by your chosen certification body. 
  • They’ll test your systems to verify the controls are properly implemented.
  • This is ideal for organisations handling sensitive data or wanting stronger assurance.

Receive Your Certificate

(Optional) Upgrade to Cyber Essentials Plus

(Optional) Upgrade to Cyber Essentials Plus

  • Valid for 12 months. 
  • Enables you to bid for certain government contracts and boosts supplier confidence.

Contact Us

Drop us a line!

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Better yet, see us in person!

We love our customers, so feel free to visit during normal business hours.

JDI UK

37 Oak Tree Crescent, Knottingley, West Yorkshire WF11 0EW, UK

T: 01772 802702 M: 07486 860990 E:info@jdi-uk.com

Hours

Mon

By Appointment

Tue

By Appointment

Wed

By Appointment

Thu

By Appointment

Fri

By Appointment

Sat

Closed

Sun

Closed

Contact Us

Drop us a line!

Attach Files
Attachments (0)

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Lets start a conversation

We would love to start a conversation to see how we can help with your IT, GDPR  & Cyber Essentials compliance.

Message us on WhatsApp

JDI UK Limited

T: 01772 802702 M: 07486 860990 E: info@jdi-uk.com

Hours

Mon

09:00 – 17:00

Tue

09:00 – 17:00

Wed

09:00 – 17:00

Thu

09:00 – 17:00

Fri

09:00 – 17:00

Sat

Closed

Sun

Closed

Copyright © 2025 JDI UK - All Rights Reserved.

Powered by

  • Privacy Policy

This website uses cookies.

We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

DeclineAccept