What are the benefits, requirements and costs to becoming a Cyber Advisor Assured Service Provider?

Aug 1, 2023 | Cyber Advisors

Cyber Advisor is the National Cyber Security Centre’s new Industry Assurance scheme delivered in partnership with IASME. It provides small and medium sized organisations with reliable and cost effective cyber security advice and practical support.

The Cyber Advisor scheme allows the NCSC to recommend independently assured organisations that can help their customers implement a baseline level of cyber security. By creating a trusted ecosystem, consumers will know better who to engage and what to expect. Furthermore, for those already doing this work, the Cyber Advisor scheme aims to recognise their competence.

How to join the scheme

To become a Cyber Advisor (Cyber Essentials), you will need to pass an independent assessment, the Certificate of Competence in Cyber Essentials Implementation and provide IASME with that evidence. You will then be required to sit an online induction training course. The course will take you through the essential elements of the scheme and be followed by a simple test of understanding.

You can find more information on the Advisor exam on the Cyber Scheme webpage.

Please note, all Cyber Advisors (Cyber Essentials) must be based in the UK or Crown Dependencies.

Once an individual has successfully passed the Cyber Advisor (Cyber Essentials) exam, the company they work for can become an NCSC Assured Service Provider.

All Advisors need to be part of an Assured Service Provider organisation to be able to carry out Advisor services.

All Assured Service Providers have to show they meet both security and quality requirements.

They can do this by holding one of these security certifications.

  • UKAS-accredited ISO 27001 certification

  • Audited IASME Cyber Assurance (Level 2) certification

They also need to hold one of these quality requirements:

  • UKAS-accredited ISO 9001 certification

  • IASME Quality Principles alongside an IASME Cyber Assurance (Level 2) certification

  • QG Quality Fundamentals+ certification

An NCSC Assured Service Provider must also:

  • Provide independently verified evidence that they have achieved and maintain Cyber Essentials

  • Sign and return the associated contract

  • Employ at least one individual who has passed the Cyber Advisor assessment

  • Pay an annual subscription fee

What are the costs? 

There is an annual fee of £600 + VAT per organisation, and £250 +VAT per Advisor. There will also be a one-off onboarding charge of £250 +VAT.

The cost to take the Cyber Advisor assessment is £600 +VAT, the assessment will remain valid for three years. After three years a resit will be required.

Find out more

Any questions, please contact IASME at [email protected]