How to become a Cyber Advisor
The scheme allows the NCSC to recommend independently assured organisations to consumers, so they can have confidence in buying cyber security advice. For those providers already doing this type of work, the Cyber Advisor scheme aims to recognise your competence.
To become a Cyber Advisor (Cyber Essentials), you will need to pass an independent assessment, the Certificate of Competence in Cyber Essentials Implementation and provide IASME with that evidence. You will then be required to sit an online induction training course. The course will take you through the essential elements of the scheme and be followed by a simple test of understanding.
You can find more information on the Advisor Exam on the Cyber Scheme webpage.
Please note, all Cyber Advisors (Cyber Essentials) must be based in the UK or Crown Dependencies.
Once an individual has successfully passed the Cyber Advisor (Cyber Essentials) exam, the company they work for can become an NCSC Assured Service Provider.
Requirements to become an Assured Service Provider
All Advisors need to be part of an Assured Service Provider organisation to be able to carry out Advisor services.
All Assured Service Providers have to show they meet both security and quality requirements.
They can do this by holding one of these security certifications.
- UKAS-accredited ISO 27001 certification
- Audited IASME Cyber Assurance (Level 2) certification
They also need to hold one of these quality requirements:
- UKAS-accredited ISO 9001 certification
- IASME Quality Principles alongside an IASME Cyber Assurance (Level 2) certification
- QG Quality Fundamentals+ certification
An NCSC Assured Service Provider must also:
- Provide independently verified evidence that they have achieved and maintain Cyber Essentials
- Sign and return the associated contract
- Employ at least one individual who has passed the Cyber Advisor assessment
- Pay an annual subscription fee
If your company is interested in becoming an NCSC Assured Service Provider, please contact us at [email protected]. Your professionalism, expertise and attitude is more important to us than size and we are happy to licence to companies of all sizes.
Frequently Asked Questions
Why are we launching the Cyber Advisor scheme?
Despite a growing emphasis on cyber security, many organisations often find it hard to choose the right help to meet current guidance – they don’t know who to trust, or fear they will over-pay or be sold more than they need. The Cyber Advisor scheme aims to ensure the understanding and application of trusted cyber security advice at a proportionate price.
Why does the Cyber Advisor service centre around the 5 Cyber Essentials controls ?
Does implementing Cyber Advisor advice lead to Cyber Essentials certification?
Organisations looking for advice do not need to be aiming for Cyber Essentials certification. The advice offered by Cyber Advisors will prepare you for certification. However, Cyber Advisors cannot issue Cyber Essentials certification (unless they are also a Cyber Essentials Certification Body assessor), so organisations will still need to apply for Cyber Essentials certification separately.
What is the difference between a Cyber Essentials Certification Body and a Cyber Advisor Assured Service Provider?
A Cyber Essentials Certification Body can assess if an organisation meets the criteria required for Cyber Essentials certification and issue that certification – something a Cyber Advisor cannot do unless their organisation is also a Cyber Essentials Certification Body.
How do I get help from a Cyber Advisor?
What are the requirements to become a Cyber Advisor Assured Service Provider?
- Have independently verified evidence that they have achieved and maintain Cyber Essentials certification
- Have good cyber security and can keep client data secure
- Be committed to achieving an excellent and consistent client experience by using a quality management system.
An annual subscription fee will also be charged.
Full details of the requirements to be an Assured Service Provider can be seen here.
What are the benefits of being a Cyber Advisor? Why become one?
The Cyber Advisor scheme allows the NCSC to recommend independently assured organisations that can help their customers implement a baseline level of cyber security. By creating a trusted ecosystem, consumers will know better who to engage and what to expect. Furthermore, for those already doing this work, the Cyber Advisor scheme aims to recognise their competence.
How much will Cyber Advisors charge?
What is the cost for firms to become a Cyber Advisor?
Annual fee of £600 per organisation, and £250 per advisor. There will also be a one-off onboarding charge of £250.
What is the cost to take the Cyber Advisor assessment?
Where can I get more information?
For more information, please contact IASME at [email protected]
Find Out More
Have a look at our Frequently Asked Questions or speak to our team