What is Cyber Essentials certification?
Cyber Essentials is a government-backed, industry supported scheme to help organisations protect themselves against common cyber-attacks. It covers five key technical controls that organisations should have in place to provide a basic level of cyber security.
The aim of testing for Cyber Essentials certification is to identify exploitable vulnerabilities and weaknesses within an organisation’s infrastructure through the Internet. The testing is based on broad attack vectors from the Internet. The testing is not designed for organisations that are likely to be the target of Advanced Persistent Threat (APT) type of attacks but to highlight any potential attacks or weaknesses that may be used by an opportunist attacker.
Cyber Essentials Plus is the next stage after successful completion of Cyber Essentials self-certification. CE+ aims to prove that the statements an organisation has submitted for CE are accurate and that the organisation is fully compliant with the requirements.

Why Partner with Capula?
As well as being a leading integrator for large parts of the UK’s most critical assets, hundreds of companies have chosen Capula for their Cyber essentials because…
Self Assessment
Remote Assistance
On-site support
-
- On-site support
- Consultant led at all stages
- Questionnaire
- Certification
- Price = £1,300
Self Assessment
-
- Materials Only
- Cyber Essentials Questionnaire included
- External vulnerability scan
- Internal vulnerability scan (on-site)
- Workstation assessment
- Cyber Essentials results report
- Certification
- Price = £1,395*
- j
- j
Remote Assistance
-
- Remote assitance
- Cyber Essentials questionnaire included
- External vulnerability scan
- Internal vulnerability scan (on-site)
- Workstation assessment
- Cyber Essentials results report
- 2 Hour Webinar assistance
- Certification
- Price = £1,645*
- j
On-site support
-
- On-site Support
- Cyber Essentials questionnaire included
- External vulnerability scan
- Internal vulnerability scan (on-site)
- Workstation assessment
- Cyber Essentials results report
- On-site Consultant Assistance
- Pre assessment gap analysis report
- Certification
- Price = £2,345*
*Pricing is based on a sample size of upto 10 assets – For the internal tests, the assessor needs to test a sample of all end-user devices (including tablets and smartphones) and a sample of all servers that allow users to access an interactive desktop environment. An “interactive desktop environment” means a graphical interface such as an X server, Windows or macOS. It does not include a text-based environment such as an SSH or telnet session or a bash / DOS / PowerShell command line.
Who are Capula?
Capula is the go-to industrial systems integrator for process, manufacturing, power, utilities and engineering businesses throughout the UK.
As experts in industrial control, instrumentation and automation, we have an in-depth knowledge of our technology sectors and provide many specialist capabilities that have proved of great value to our clients. Established nearly 50 years ago, we’ve decades of experience partnering with customers large and small. Our portfolio includes work on some of the UK’s most complex critical infrastructure projects – projects that have been delivered on time and within budget.
Our depth of applications knowledge, embodied in our highly skilled, experienced and committed team, truly sets us apart. Our specialist in-house engineering staff adopt a whole-systems approach to ensure that your valuable assets will be fully safeguarded during the course of your projects. Clients often return to us with confidence, knowing that they will receive leading-edge quality and implementation that go beyond the confines of traditional engineering solutions.
With offices nationwide, we’re able to offer local support to your business. We also have the backing that comes with being part of the Imtech group, a large technical services provider https://www.imtech.co.uk/.
Our Security Portfolio
An effective security program must start by assessing the risk. giving you greater visibility into your current OT environment and see the vulnerable assets.
In the industrial cyber-security space, the risks are changing all the time, as companies extend, adapt and improve their systems, as new vulnerabilities are identified and as threat strategies evolve.
Using the CDCAT assessment tools, our audit identifies the maturity level of individual or combined elements we qualify as ‘defensible units’ within your business, based on pre-defined controls using a wide range of security standards including ISO 27001, IEC 62443, NIST SP800-53 – Security Controls and many others.
We can further undertake a full review of your perimeter defenses, try to gain access to your site as an adversary and use detailed social engineering skills to obtain access to restricted areas. If required, our teams can pose as trusted insiders, contacting staff for information or professing to be support agents to gain access to hardware as part of an ongoing maintenance agreement. Perhaps you are interested to know what happens to USB devices that are found on your premises and who may be curious enough to plug them in?