A single cyber incident can disrupt operations and damage reputations for any sized business. The IASME Cyber Assurance (ICA) standard is a comprehensive yet flexible framework designed to help organisations of all sizes strengthen their risk governance and achieve cyber resilience.
The standard is build around 14 key themes, covering everything from information security planning to business continuity, and adapting to the needs of an organisation. ICA is not just about ticking boxes but embedding cyber resilience into the fabric of your organisation.
Affordable and Accessible Cyber Security
One of the biggest barriers to cyber resilience for small organisations is the perception that it’s a long, expensive process. IASME has worked hard to dispel this myth by making its Cyber Assurance standard both affordable and accessible. Certification starts at just £320, with costs scaling based on the size of the organisation. The process begins with a self-assessment, allowing businesses to take the first step toward certification without the need for costly external audits.
For those looking to go further, the standard offers a two-level certification process:
Level One: A verified self-assessment.
Level Two: An in-depth audit of your systems.
This tiered approach allows organisations to progress at their own pace, building their cyber resilience step by step.
Aligning with the UK Government’s Cyber Governance Code of Practice
In 2025, the UK Government published its Cyber Governance Code of Practice, developed in collaboration with the National Cyber Security Centre (NCSC) and industry experts. The code emphasises that cyber resilience is not just an IT issue—it’s a governance issue. Boards and directors must take responsibility for managing cyber risks, ensuring that people, processes, and technology work together in harmony.
The IASME Cyber Assurance standard is uniquely positioned to help organisations meet the requirements of this code. By working through the 14 themes of the ICA standard, businesses can not only achieve cyber resilience but also demonstrate compliance with the government’s guidelines.
As George Quigley, head of ICA, puts it “what IASME Cyber Assurance helps you do is embed what you’re doing throughout the business. It gets away from some esoteric framework that’s sitting out there to something that is embedded within your business. It runs right through your people, your processes, and your technology.”
Learn more about the IASME Cyber Assurance here, or contact at IASME [email protected]