Become an Assessor
We license the delivery of Cyber Essentials (basic and Plus) assessments and IASME Cyber Assurance assessments (including GDPR readiness) to a number of highly professional companies. These companies are known as Certification Bodies. Each assessor within those Certification Bodies must go through training and pass the relevant assessments and exams.
IASME ASSESSOR ROLES
All assessors need to be part of a Certification Body to be able to carry out assessments. Please see the Certification Body requirements toward the end of this page.
The following assessor roles are recognised by IASME but one person can take on as many of these roles as they want. One person can assess against all of these roles or just one. Please note that you need to be a Cyber Essentials basic assessor if you want to be an IASME Cyber Assurance assessor or a Cyber Essentials Plus assessor.
Each of these roles require a one day training course. All the training is currently delivered remotely.
The costs are as follows:
Your company will also need to gain the certification of the scheme they are assessing to (e.g. Cyber Essentials, Cyber Essentials Plus, IASME Cyber Assurance). The cost of this depends on the size of your company.
To become a basic level Cyber Essentials Assessor, you will first need to have 3 years’ experience of working in IT or Cyber Security (this does not include periods of study) and be based in the UK or Crown Dependancies. You will also need to pass the free Assessor Skills exam unless you already hold one of these qualifications:
Following completion of this course, your company will complete the Cyber Essentials verified self-assessment (if you already have an up-to-date certificate, you will not need todo this again). The cost of this depends on the size of your company.
After passing this course, you will be qualified to assess against Cyber Essentials (basic), once you are working for a licensed Certification Body.
If you need to pass the Assessor Skills exam then please contact us and we will send you the details.
IASME cyber assurance ASSESSOR COURSE
To become an IASME Cyber Assurance Assessor, you will need to do the following:
Once you have completed all these steps you will be qualified to assess against Cyber Essentials (basic) and the IASME Cyber Assurance standard (Level One and Level Two), once you are working for a licensed Certification Body.
CYBER ESSENTIALS PLUS
If you want to assess against Cyber Essentials Plus you need have already attended and passed the Cyber Essentials Assessor course detailed above, and be based in the UK or Crown Dependancies. In order to deliver Cyber Essentials Plus assessments, every Certification Body will need at least one ‘Lead Assessor’. A Lead Assessor must hold one of the qualifications listed below:
**These qualifications will be accepted if they have not expired. Upon expiry you will be required to hold an alternative qualification on List A to continue as Lead Assessor.
All other CE+ assessors within the same Certification Body will be required to have at least 3 years experience of working in IT or Cyber Security and pass our Vulnerability Assessment Plus exam.
All Cyber Essentials Plus assessors will then need to take part in and pass the online Cyber Essentials Plus training course.
You will also need to attain Cyber Essentials Plus certification for your company. We encourage the attendees on the course who pass to pair up and assess each other against Cyber Essentials Plus once they have become Certification Bodies.
BECOME A CERTIFICATION BODY
Once the Assessor has successfully completed the training, gained the relevant certification and passed the exams / assessments the company they work for can become a Certification Body. All Certification Bodies need to sign and return the associated contract.
All Certification Bodies have to show they meet both security and quality requirements. They can do this by holding one of these security certifications
They also need to hold one of these quality requirements:
Please note: It is a contractual requirement for IASME Cyber Assurance Certification Bodies to hold IASME Cyber Assurance (Level Two) certification.
If your company is interested in becoming a Certification Body please contact us. Your professionalism, expertise and attitude is more important to us than size and we are happy to licence to companies of all sizes.
Find Out More
Have a look at our Frequently Asked Questions or speak to our team