The following checklist applies to both Cyber Essentials and Cyber Essentials Plus requirements, the difference being that with the latter a technical expert conducts a vulnerability scan and remote audit of your IT systems, including a representative set of user devices, all Internet gateways and all servers with services accessible to unauthenticated Internet users.
The questions that will need to be answered include:
- Are all of your operating systems supported including phones, tablets, servers, workstations etc…?
- Have all the security patches been applied to the operating systems?
- Is your Office suite up to date? Is your anti-malware up to date?
- Are your browsers up to date with security patches?
- Have you disabled auto-run?
- Have you disabled remote scripts from being run?
- Are all of your applications up to date with security patches?
- Are all the applications used in the organisation supported?
We engaged URM to help us on our journey to achieve Cyber Essentials Plus. From the outset the engagement with URM was excellent. The online portal made the CE assessment seamless. The assessors were professional and courteous and went above and beyond to help us through the process.
Cyber security services provider
Do you know where your greatest vulnerabilities sit?
Find out through a Cyber Security Headline Assessment
Find out more
related BLog
Understanding Defence Cyber Certification (DCC)
Published on
29 May
2026
URM’s blog explains how the DCC works, who needs it, the benefits of certification, with clear guidance on how to approach compliance and avoid common mistakes.
Read more
Cyber Security
Published on
22/5/2026
Cyber Security and the Board: The UK Cyber Resilience Pledge in FocusURM’s blog explains the purpose, structure and content of the Government’s new Cyber Resilience Pledge, and what it means for organisations across the UK.
Read more
Cyber Security
Published on
16/4/2026
Mitigating Cyber Risks: Why Cyber Essentials Matters More Than EverURM’s blog highlights the growing threat to cyber security in the UK and the importance of the Cyber Essentials scheme in mitigating these risks.
Read more
Cyber Security
Published on
16/4/2026
Cyber Essentials Requirements UpdateURM’s blog breaks down the latest changes to the Cyber Essentials requirements and outlines why these updates matter for organisations seeking certification.
Read more
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.