Cyber Essentials mark

About Cybersecurity Certification Scheme   |   Cyber Essentials   |   Cyber Trust

SG Cyber Safe - Cyber Essentials

The Cyber Essentials mark is a cybersecurity certification for enterprises that are embarking on their cybersecurity journey. It is targeted at organisations such as Small and Medium Enterprises (SMEs). Some SMEs have limited IT and/or cybersecurity expertise and resources;  the Cyber Essentials mark aims to enable them to prioritise the cybersecurity measures needed to safeguard their systems and operations from common cyber-attacks.

The Cyber Essentials mark serves to recognise that enterprises have put in place good cyber hygiene practices to protect their operations and customers against common cyber-attacks.

Why should my organisation apply?

• Tailored to your enterprise’s cybersecurity needs
• Simplifies cybersecurity by prioritising the measures to focus on first
• Guides your enterprise to implement cyber hygiene measures against common cyber-attacks
• Provides recognition of your cybersecurity practices

What measures does my organisation need to implement? Cyber Essentials - What measures does my organisation need to implement?
Click here to download the infographic on Cyber Essentials mark [PDF, 564KB]. 


Certification for the Cyber Essentials mark

Enterprises seeking certification may refer to the following:

Cyber Essentials mark certification document [PDF, 387KB]
Cyber Essentials mark – Self-assessment template for enterprises [XLSX, 90.3KB]

a. Appointed Certification Bodies

The certification process is undertaken by certification bodies that have been appointed by CSA. Enterprises may approach any of the certification bodies, please click here for contact details

b. Certification Duration and Mode of Assessment

The Cyber Essentials certification is valid for a duration of 2 years. The mode of assessment will involve desktop review and verification of the enterprise’s self-assessment by an independent assessor from the appointed certification body.

Certification charges and the time needed for certification may differ according to the scope of the certification. Enterprises may visit the websites of the certification bodies listed above to find out more.

c. Early bird incentive for the Cyber Essentials mark certification

To encourage enterprises to adopt the Cyber Essentials mark, CSA has worked with the appointed certification bodies to offer an early bird incentive for a limited time period. Enterprises that are successfully certified can enjoy the following incentives, which will be deducted from the certification fees charged by the certification bodies:

 Profile of Enterprise  Early Bird incentive*
To be deducted from the certification fees charged by certification bodies
 Enterprises with:
<10 employees
 10 – 99 employees  S$200
 100 – 200 employees  S$250

* The following considerations applies to the early bird incentive:

Applicable only from 29 Mar 2022 to 31 Mar 2023
Applicable only for the first successful certification per enterprise
Only Singapore-registered businesses and Non-Profit Organisations (NPO) incorporated in Singapore are eligible
For the early bird incentive, enterprises shall submit their completed application forms to their selected certification bodies

d. Enablers to support certification

Need help with the cybersecurity measures you can implement to improve your enterprise’s cybersecurity? Check out our cybersecurity toolkits for guiding questions, templates and more.

Ready to start your digital journey but in doubt of which products or solutions to use? The following products or solutions can help you get started in your cybersecurity certification journey. They address, either in part, or more comprehensively, the measures listed in the Cyber Essentials mark.*  Read more about the products and solutions.

Additional information

Interested in the Cyber Trust mark instead? Click here to learn more.
Unsure about the different codes, cybersecurity or data certifications required for your enterprise? Click here to learn more.