The Defence Cyber Certification (DCC) Cyber Essentials and Cyber Essentials Plus Support
Cyber Essentials
Our experienced assessors can offer a range of services to ensure your Cyber Essentials certification assessment is as seamless and successful as possible. For example, we can conduct a gap analysis to establish your current level of compliance with the scheme and advise on remediation of any non-compliant areas. We can also offer a Cyber Essentials application review service, where we work with you before you complete your self-assessment questionnaire (SAQ) to ensure you understand and are able to compliantly answer the questions, or check your completed SAQ before formal submission, depending on your preference.
Cyber Essentials Plus
If your organisation is required to obtain Cyber Essentials Plus certification, the scheme’s audited qualification, we can also offer a pre-assessment service. Here, URM’s assessor performs a smaller scale (but still meaningful) technical review of your systems, providing you with recommendations to close any compliance gaps and therefore increase your chances of success during the external audit.
Get in touch
Please note, we can only process business email addresses.
Why URM?
Track record
URM has a 20-year track record of providing high-quality training and consultancy services, assisting organisations to improve their information security, cyber security and risk management programmes. Whilst the DCC is a relatively new framework, URM’s can leverage its extensive experience supporting organisations’ implementation of other security frameworks that have considerable overlap with the scheme (such as the NIST Cybersecurity Framework (CSF), and ISO 27001) to support your DCC compliance.
Tailored solutions
We at URM appreciate that no two organisations are the same and, as such, neither will their cyber security and DCC compliance programmes. The unique requirements of your organisation, size and structure, risk appetite, products and services provided, legal and obligatory requirements, etc., will always guide our approach to supporting your compliance with the DCC. Meanwhile, we will ensure the advice we offer reflects your existing working practices, enabling you to integrate the required DCC controls into your organisation’s business-as-usual (BAU) operations as seamlessly as possible.
Knowledge transfer
With our ‘real world’ knowledge transfer philosophy, you will benefit from our large team of consultants’ extensive practical experience and knowledge of cyber security best practice, and be able to independently improve your security by virtue of what you have learned from them, without needing to rely on ongoing consultancy support.
Understanding Defence Cyber Certification (DCC)
URM’s blog explains how the DCC works, who needs it, the benefits of certification, with clear guidance on how to approach compliance and avoid common mistakes.
URM’s blog explains the purpose, structure and content of the Government’s new Cyber Resilience Pledge, and what it means for organisations across the UK.
URM’s blog breaks down key changes to the Cyber Essentials scheme coming into force on 27 April 2026, including the new Danzell Question Set.
URM’s blog explains recent amendments to the Cyber Security and Resilience Bill, how they align with broader regulatory shifts, & practical steps to prepare.