Campaign to boost small business cyber resilience
One in two UK small businesses suffered a cyber attack last year. Many wrongly believe their size makes them safe from cyber criminals.
This growing threat has prompted the National Cyber Security Centre (NCSC) to launch the National Cyber Resilience campaign. Supported by the Department for Science, Innovation and Technology, it aims to boost cyber resilience among small and medium-sized businesses.
The campaign focuses on Cyber Essentials, a government-backed certification scheme that sets the minimum cyber security standard for organisations of all sizes.
What is Cyber Essentials?
Cyber Essentials covers five key controls all organisations should implement to block common online threats
- secure configuration of devices and systems
- user access control
- malware protection
- security update management
- firewalls and internet gateways
Two certification levels are available
- Cyber Essentials – self-assessment plus independent audit
- Cyber Essentials Plus – includes technical testing for higher assurance
Certification shows that you take cyber security seriously. It can lead to fewer insurance claims and is often mandatory for many public and private sector contracts.
Find out more about Cyber Essentials certification.
Get started with Cyber Essentials
You can prepare for Cyber Essentials certification with the help of these free NCSC resources
When you are ready to certify, there are two routes you can take
- self-led – complete the verified self assessment
- supported – pay for support from a Cyber Advisor or certification body
Visit the IASME website to get Cyber Essentials certified.
First published 1 May 2026
