Cyber Essentials, automated
Get ready for Cyber Essentials and Cyber Essentials Plus, with an agent to gather evidence and a human to certify.
- Live today
- Cross-mapped with ISO 27001
- Agent-assisted, human-certified
- EU data residency
Cyber Essentials is the UK government-backed scheme built on five technical controls that stop the most common internet-based attacks. Diligio Compliance tracks the five controls and their evidence, so you can self-assess for Cyber Essentials and be ready for the hands-on Cyber Essentials Plus assessment.
What Cyber Essentials is
Cyber Essentials, run under the UK NCSC, certifies five technical control themes: firewalls, secure configuration, security update management, user access control, and malware protection. Base Cyber Essentials is a verified self-assessment; Cyber Essentials Plus adds an independent hands-on technical audit of the same themes.
It is deliberately a baseline rather than a comprehensive standard, which makes it a quick, recognised first step, and a frequent requirement for UK public-sector contracts.
How Diligio Compliance helps
The five controls, evidenced
A control register covering the five Cyber Essentials themes, each with status, owner, proof, and last-reviewed date, so your self-assessment is backed by evidence rather than recollection.
Ready for Cyber Essentials Plus
Keep the evidence current and gaps flagged, so the independent hands-on assessment for Cyber Essentials Plus finds your controls in place.
An agent that proposes, a human that certifies
Connect your own AI agent to propose evidence and control statuses across the five themes. A person certifies before anything becomes your attested posture, with a kill switch and an audit trail.
A stepping stone to ISO 27001
The five themes are a subset of a broader programme, cross-mapped to ISO 27001 and SOC 2, so Cyber Essentials work carries straight over if you go further later.
New to the process? Read the Cyber Essentials, explained.
Frequently asked questions
What is the difference between Cyber Essentials and Cyber Essentials Plus?
Both cover the same five technical controls. Cyber Essentials is a verified self-assessment, while Cyber Essentials Plus adds an independent, hands-on technical audit that checks the controls are actually in place. Plus carries more assurance weight.
How does Cyber Essentials relate to ISO 27001?
Cyber Essentials is a baseline of five technical controls; ISO 27001 is a full management system. The five themes are a subset of ISO 27001, so Cyber Essentials is a quick first step, and the work carries across if you pursue ISO 27001 later. Diligio Compliance cross-maps them.
Is Cyber Essentials support available now?
Yes. Cyber Essentials is live in Diligio Compliance. Talk to us and we will enable it and help you evidence the five controls.
Get started
Tell us you are working towards Cyber Essentials and we will enable Diligio Compliance for your team and help you get set up. A flat $1,999 per company per year, or $499 for your first year as a startup.