All frameworks
UK NCSC

Cyber Essentials — the five UK NCSC controls

Official source: UK NCSC

Check the five technical controls behind UK Cyber Essentials certification: firewalls, secure configuration, access control, malware protection and patch management.

Get started Read the checklist
Cyber Essentials · controls 5 / 5
CE 1FirewallsPASS
CE 2Secure configurationPASS
CE 3User access controlPASS
CE 4Malware protectionPASS
CE 5Security update managementPARTIAL
Cyber Essentials is one of ten frameworks mapped from a single scan
SOC 2
HIPAA
PCI DSS v4
NIST CSF 2.0
CMMC
ISO 27001
CIS v8
FTC Safeguards
Cyber Essentials
NIST 800-171
Coverage

How SBCMSP maps Cyber Essentials

Continuous monitoring across every control family — 5 controls, scored on each scan.

Firewalls

Boundary firewalls and internet gateways.

Secure configuration

Hardened devices and software.

Access control

Least privilege and account management.

Malware protection

Anti-malware and application control.

Patch management

Timely security updates.

Evidence & reporting

Auto-collected evidence and a white-label, audit-ready PDF for every control.

Who it’s for UK organizations pursuing Cyber Essentials or Cyber Essentials Plus.
Continuous, not point-in-time

Audit-ready all year — not just at renewal

Instead of a frantic evidence scramble before the audit, SBCMSP monitors each Cyber Essentials control continuously and flags drift the moment it happens.

  • Control-level pass / partial / fail status
  • Auto-collected, timestamped evidence
  • Gap remediation guidance per control
  • White-label report for the client & auditor
readiness · acme-corp100%
100
Controls passing5 / 5
Evidence collected94%
Open gaps1

Get your clients Cyber Essentials-ready faster

Run a readiness assessment in minutes and see exactly which controls need work.