Cartoon bee with a shield representing cyber security services. Remote Access Open Support Request

Cyber Essentials Certification

Powered by CyberSmart

Cyber Essentials Certification

Blowfish Technology guides North West businesses through Cyber Essentials certification – powered by CyberSmart. Achieve the UK Government-backed certification that protects your business from the most common cyber attacks and opens the door to government contracts.

The Five Cyber Essentials Controls

  • Firewalls & internet gateway controls
  • Secure configuration of devices
  • User access control & admin privileges
  • Malware protection
  • Security update management (patching)
80%Of common attacks prevented by the 5 controls
GovRequired for UK government contracts
FreeCyber insurance included with certification
AnnualRenewal to maintain certification status

What Is Cyber Essentials?

The UK Government’s Baseline Cyber Security Standard

Cyber Essentials is a UK Government-backed certification scheme designed to help businesses of all sizes protect themselves against the most common and damaging cyber attacks. It was developed by the National Cyber Security Centre (NCSC) and is widely recognised as the minimum standard for cyber security in the UK.

The scheme focuses on five core technical controls that, when properly implemented, protect against approximately 80% of common cyber attacks – including phishing, malware, ransomware and unauthorised access.

Blowfish Technology guides your business through the entire certification process – from gap analysis and remediation to submission and certification – using CyberSmart’s streamlined platform.

Why Your Business Needs Cyber Essentials

Government Contracts – Required for all UK government and public sector contracts handling personal data or sensitive information

Cyber Insurance – Free cyber liability insurance included with certification for eligible businesses

Client Confidence – Demonstrate to clients and partners that your business takes cyber security seriously

Supply Chain Requirements – Increasingly required by larger organisations as a condition of doing business with them

The Five Controls

What Cyber Essentials Requires

Blowfish Technology helps you implement and evidence all five controls – assessing your current position, remediating gaps and preparing your submission for certification.

1

Firewalls

All devices must be protected by a correctly configured firewall – controlling what traffic can enter and leave your network and each device, including software firewalls on individual devices.

2

Secure Configuration

Devices and software must be configured securely – removing default passwords, disabling unnecessary services and ensuring only approved software is installed and running.

3

User Access Control

User accounts must have only the access they need. Admin privileges must be restricted, and MFA must be enabled for all accounts accessing cloud services and remote connections.

4

Malware Protection

All devices must have up-to-date malware protection – either traditional antivirus, application allowlisting or sandboxing – to prevent malicious software from running.

5

Security Update Management

All software, operating systems and firmware must be kept up to date – patches applied within 14 days of release for high or critical vulnerabilities.

Blowfish Gets You Certified

We assess your current position against all five controls, remediate any gaps, and guide you through the CyberSmart submission process – making certification straightforward from start to finish.

Why Blowfish + CyberSmart

Guided Cyber Essentials Certification for North West Businesses

We don’t just help you pass the assessment – we make sure your business genuinely meets the controls, closing real security gaps in the process. CyberSmart’s platform makes submission simple and our team handles the technical remediation.

Get in Touch

Gap Analysis Included – We assess your current position before the formal assessment
Technical Remediation – We fix the gaps, not just identify them
CyberSmart Platform – Streamlined self-assessment process with guided answers
Annual Renewal Support – We manage your renewal each year to maintain certification
Free Cyber Insurance – Included with certification for eligible UK businesses
ISO 27001 Accredited – We hold our own accreditations – we practise what we preach

Frequently Asked Questions

How long does Cyber Essentials certification take?

For businesses with most controls in place, certification can be achieved within a few weeks. For those with gaps to address, remediation adds time. Blowfish Technology will give you a realistic timeline after an initial gap analysis.

What is the difference between Cyber Essentials and Cyber Essentials Plus?

Cyber Essentials is a self-assessment – you answer questions and an assessor reviews your answers. CE Plus includes independent technical verification by an accredited assessor who actually tests your systems, providing a higher level of assurance.

Do I get cyber insurance with Cyber Essentials?

Yes – eligible UK businesses with an annual turnover under £20 million receive free cyber liability insurance for 12 months as part of their certification, provided through the IASME Consortium.

Is Cyber Essentials mandatory?

Mandatory for all UK government contracts involving personal data. Also increasingly required by larger private sector organisations as a supply chain condition. It is widely recognised as the baseline standard for cyber security in the UK.

How much does Cyber Essentials certification cost?

The assessment fee depends on organisation size. Blowfish Technology charges for gap analysis, remediation and submission support. Contact us for a full quote tailored to your business.

Ready to Get Cyber Essentials Certified?

Talk to Blowfish Technology about achieving Cyber Essentials for your North West business.

Get in Touch
Back to Cyber Security

Join Our Mailing List


    We never share your data, for more information please read our privacy policy.