Cyber Essentials Assessment

IASME Cyber Essentials

The Department for Education has announced an important change in IT security requirements.

2024-2025 funding year

Institutions must achieve the new certification starting in the 2024-2025 funding year.

Deadline 31st July

Colleges and SPIs must have IASME Cyber Essentials in place by 31st July 2025 to comply with the mandate for funding.

Exclusive partnership

With Curo and Cloud9 by your side, you'll benefit from some of the best security knowledge and expertise in the business.

step 1

Discovery workshop

Objectives

Work through the Cyber Essentials assessment questionnaire.
Identify key areas requiring further analysis.
Understand your institution’s current security posture.

Deliverables

Preliminary Gap Analysis: Identify missing policies, controls, or configurations.
Action Plan: Assign responsibilities and deadlines to relevant stakeholders.

step 2

Action plan review

Objectives

Review progress after initial stakeholder input.
Address key gaps and clarify remediation steps.

Deliverables

Preliminary Gap Analysis: Identify missing policies, controls, or configurations.

step 3

Questionnaire preparation and compliance validation

Objectives

Collect and document all required evidence.
Ensure questionnaire responses align with Cyber Essentials requirements.
Review responses against best practices to mitigate certification risks.

Deliverables

Completed draft of the Cyber Essentials questionnaire.
Compliance recommendations and validation check.

Step 4

Submission and final remediation

Objectives

Submit the questionnaire for initial assessment.
Address any assessor feedback with rapid remediation support.
Submit the final assessment for certification.

Deliverables

Successfully submitted Cyber Essentials assessment.
Final remediation report (if required).