Our Services

Cyber Essentials certification made easy

Are you fully protected against common cyber threats?

Unlock the benefits of Cyber Essentials with Toro:

🔘 Tailored Guidance: Whether you're new to cyber security or upgrading your defences, our team provides the expertise to guide you through the Cyber Essentials and Cyber Essentials Plus certifications.

🔘Competitive Advantage: Use certification to qualify for government contracts and reassure your customers and partners.

🔘Risk Management: Enhance your security posture significantly by complying with a government-backed standard.

Take the first step towards enhanced cyber protection.

Request Your Certification Review Now.

How can Toro support you?

Toro offers a range of different options to support you in your journey to certification, depending on your requirements and internal technical ability.

Certification Only: You can submit your assessment directly to Toro for marking.

Cyber Essentials: Guided consultancy to walk you through the assessment and make sure you are answering the questions accurately and compliantly.

Cyber Essentials Plus: Guided consultancy to walk you through the assessment, plus access to our qualified auditors to ensure your security controls and vulnerability scans will pass the test.

Cyber Essentials & Cyber Essentials Plus: Combines our Cyber Essentials and Cyber Essentials Plus plans at a discounted price.

Why should you get certified?

Enhanced Security

The processes put in place as part of the CE certification will help protect your organisation from the most common internet based cyber-attacks.

Win New Business

Winning Business

CE certification will give you the ability to bid for government tenders.

Gain Trust

CE certification will help demonstrate a serious commitment to cyber security, building trust with customers and partners.

Lowers your Insurance Premiums

Insurance

Cyber Essentials certification includes automatic cyber liability insurance for any UK organisation who certifies their whole organisation and has less than £20m annual turnover (terms apply).

Cost-Effective Compliance

Cost Effective Risk Management

CE and CE+ offers a simple and cost-effective certification process suitable for organisations of all sizes and sectors.

BUTTON

FAQ

What are the benefits of using Toro?

- Toro will ensure a smooth process, saving you time and resource.

- Toro has its own team of IT engineers, so we understand the reality of implementing IT change, managing an IT environment, and the challenges of doing so.

How long is the Cyber Essentials Certification valid for?

Certification is valid for 1 year and you will need to be re-certified every year to keep the status.

The certification process will be the same again. If you are keeping up with the technical controls that were put in place, it should be a lot quicker to complete.

What happens if you fail?

If you fail the Cyber Essentials certification you will have 30 days to fix the issues and re-submit your application. For Cyber Essentials Plus certification, you will have 15 days to rectify the issues and re-submit.

We would recommend that you work with a CE certification body like Toro, who will make sure you have everything in place, so you don’t have any issues.

What do you get once you have your certification?

Once you have passed your Cyber Essentials, you will receive confirmation from the certification body along with a unique reference number. You will also get Cyber Essentials badges for your website and marketing collateral, and you will be included on the NCSC's database of CE-certified organisations.

What level should I go for?

CE is a self-assessment of 89 questions that takes 1-2 hours to complete (if you are compliant!) before submitting it to an accredited Certification Body (such as Toro) to assess the answers and decide whether to award certification.

If you have answered your CE questionnaire honestly and accurately, CE+ is just an auditor checking your answers and providing third-party assurance that your security has been tested.

CE+ certification uses the same completed questionnaire as CE but involves additional vulnerability scans, system, and device audits. This includes an assessor testing a random sample of company systems, devices, and servers for their security.

The CE+ assessment informs you of the findings and any improvements that need to be made before certification is awarded.

Do I have to obtain the first level of Cyber Essentials before going on to Cyber Essentials Plus?

Yes, you need to complete the online Cyber Essentials assessment as part of the Cyber Essentials Plus certification, and this must be completed prior to the Cyber Essentials Plus assessment.

How long will I have to complete and submit my assessment?

6 months from the date of application to complete and submit your assessment.

Are there any automatic fail questions?

Yes, if you are using unsupported software in the scope of the assessment, you will fail to achieve Cyber Essentials certification.

Which should we start first: Cyber Essentials, ISO 27001, or both at the same time?

If you are able, it will be more efficient to start both at the same time – Toro can support with this. However, if you are limited on resources, time commitments and budget, you could start with the Cyber Essentials and then continue to ISO 27001 when you are ready.

What is Cyber Essentials?

Cyber Essentials is a UK government-backed scheme that helps protect organisations, whatever their size or technical expertise, against a whole range of the most common cyber-attacks.
The scheme addresses 5 key control areas and, when implemented correctly, can prevent around 80% of cyber-attacks.