IASME Cyber Assurance
Expert support and assistance to gain IASME Cyber Assurance certificatipon (a cost effective alternative to ISO 27001 for small and medium sized organisations)










What is IASME Cyber Assurance?
- Cost Effective: An affordable and cost effective alternative to ISO 27001 for small and medium sized organisations.
- Comprehensive: Relates to cyber security, data privacy and data protection.
- Extensive: IASME Cyber Assurance goes well beyond the five technical controls associated with Cyber Essentials, however applicants are required to hold either Cyber Essentials or IASME Cyber Baseline certification as a prerequisite.
- Level One: A Firewalls, secure configuration, security updates, user access control and malware protection.verified self-assessment covering all thirteen themes associated with IASME Cyber Assurance
- Level Two: An independently audited assessment to give further assurances that the thirteen themes are in place
- Thirteen themes: Relating to assets, legal landscape, risk assessment, organisations, training, physical protection, planning, policies and procedures, managing access, technical intrusion, backup and restore, monitoring, resilience.
Our Services for IASME Cyber Assurance
Level One
Assessment Only
From £
320
+VAT
-
Self-assessment submission
-
Our assessor reviews
-
2 attempts to pass
-
ICA Level One certification, on pass
-
Logo issued for website, on pass
-
Our lowest cost option for ICA Level One
-
No advice provided
Level One
Support & Assessment
From £
535
+VAT
-
Pre-marking of assessment
-
Advice and support provided
-
Access to templates and documentation
-
Multiple attempts to pass
-
ICA Level One certification, on pass
-
Logo issued for website, on pass
-
Various options to support cost effectiveness

Level Two
Audit Only
£
POA
Call to discuss
-
Audit of all 13 themes
-
2 attempts to pass
-
ICA Level Two certification, on pass
-
Logo issued for website, on pass
-
Our lowest cost option for ICA Level Two
-
No advice provided
Level Two
Audit & Support
£
POA
Call to discuss
-
Support, advice and guidance
-
Documentation templates
-
Information security policy review and advice
-
Expert insight
-
Audit of all 13 themes
-
Multiple attempts to pass
-
ICA Level Two certification, on pass
-
Logo issued for website, on pass


Why Choose Us?
- IASME Certification Body and Assessor
- NCSC Assured Service Provider and Cyber Advisor (Cyber Essentials)
- Proven track record of high quality customer service
- Tailored advice and support to meet organisational needs
- Authorised to certify organisations for IASME Cyber Assurance (Level One and Level Two)
What are the benefits of achieving IASME Cyber Assurance?
ISO 27001 Alternative
Level Two certification is widely recognised as a viable alternative to ISO 27001 for small to medium sized organisations.
Regulatory Compliance
Assists with meeting legal and regulatory requirements such as EU
GDPR and UK Data Protection.
Cost
Effectiveness
Designed to be affordable and achievable for small and medium sized organisations.
Operational Efficiency
Streamlines security processes and improves operational efficiency
through the implementation of best practices.
Continuous Improvement
Provides a framework for continuous improvement of your cyber security posture.
Competitive Advantage
Potential to provide a competitive edge when bidding for contracts,
may be required for some contracts.

What are the main themes of IASME Cyber Assurance?
- Understanding your key Assets, so that you know what to protect. Being aware of your Legal Landscape and contractual obligations.
- Having an acceptable level of Risk Assessment, management and treatment. Having a clear structure within your Organisation for effective and successful security.
- To Train People within the organisation, enabling them to understand and comply with the security responsibilities of their role. Protecting your information from Physical threats such as theft and environmental damage.
- Considering information security when Planning projects, carrying out procurement, contracting, dealing with suppliers, partners and interested parties. Having Policies and Procedures in place to specify the rules, guidelines and regulations.
- Managing Access through ‘least privilege’ principles so that users only access resources that are necessary for their role. Having Technical Intrusion controls and capabilities in place to prevent unauthorised access and usage
- Ensuring Backups and Restores of information to protect your business from accidents and malicious tampering. Creating processes to track and Monitor information systems to detect threats and act accordingly
- Having sufficient Resilience in place to support business continuity, incident management and disaster recovery.
How can RB Consultancy Ltd help you achieve IASME Cyber Assurance?
-
Expert Guidance:
We guide you through the entire IASME Cyber Assurance certification process for Level One and Two -
Gap Analysis:
We review and advise on where your current security controls may not meet the requirements of the IASME Cyber Assurance standard -
Auditing skills:
We have years of experience with information and cyber security, our assessment approach is supportive and engaging
-
Implementation Support:
We assist and empower you in implementing the necessary controls to meet the requirements of the IASME Cyber Assurance standard for Level One and Two. -
Certification Support:
We support you throughout the certification process, including documentation preparation and coordination through the IASME portal -
Support For Your Organisational Goals:
Our clients recommend us based on our “Business interest, high quality advice and valuable insights”
FAQs
- Enhanced Security Posture: Helps organisations further improve cyber security posture and implement strong security measures
- Customer Trust: Demonstrates to customers and stakeholders that cyber security is a priority
- Competitive Advantage: Potential to provide a competitive edge when bidding for contracts
- Regulatory Compliance: Assists with meeting legal and regulatory requirements such as GDPR
- Cost effective: Designed to be affordable and achievable for small and medium sized organisations
- Supply Chain Security: Demonstrates the organisation takes cyber security seriously and can support supply chain risk reduction
- Alternative to ISO 27001: Recognised as a viable alternative to ISO 27001 for small organisations
- Improved Operational Efficiency: Streamlines security processes and improves operational efficiency through implementation of best practice
- Continuous Improvement: Provides a framework for continuous improvement of your cyber security posture
- IASME Cyber Assurance is a flexible and adaptable standard that can be tailored to the specific needs and risk profile of any organisation, regardless of size or industry.
- It emphasises a risk-based approach to cyber security, allowing organisations to focus their efforts on the most critical areas.
- IASME Cyber Assurance provides a clear roadmap for implementing and maintaining effective cyber security controls.
- Understanding your key Assets, so that you know what to protect
- Being aware of your Legal Landscape and contractual obligations
- Having an acceptable level of Risk Assessment, management and treatment
- Having a clear structure within your Organisation for effective and successful security
- To train People within the organisation, enabling them to understand and comply with the security responsibilities of their role
- Protecting your information from Physical threats such as theft and environmental damage
- Considering information security when Planning projects, carrying out procurement, contracting, dealing with suppliers, partners and interested parties
- Having Policies and Procedures in place to specify the rules, guidelines and regulations
- Managing Access through ‘least privilege’ principles so that users only access resources that are necessary for their role
- Having Technical Intrusion controls and capabilities in place to prevent unauthorised access and usage
- Ensuring Backups and Restores of information to protect your business from accidents and malicious tampering
- Creating processes to track and Monitor information systems to detect threats and act accordingly
- Having sufficient Resilience in place to support business continuity, incident management and disaster recovery
- Expert Guidance: We will guide you through the entire “IASME Cyber Assurance” certification process
- Gap Analysis: We will conduct a thorough gap analysis to identify areas where your current security controls may not meet the requirements of the “IASME Cyber Assurance” standard
- Implementation Support: We will assist you in implementing the necessary controls to meet the requirements of the “IASME Cyber Assurance” standard
- Certification Support: We will support you throughout the certification process, including documentation preparation and coordination through the IASME portal
- While not always mandatory, IASME Cyber Assurance is highly recommended for small and medium sized organisations that want to demonstrate commitment to cyber security and data protection
- When bidding for contracts it may either be mandatory or may help to have a recognised cyber security certificate that can be considered as an alternative to ISO 27001
- For industries that have stringent data protection and cyber security standards IASME Cyber Assurance can be an excellent way to demonstrate appropriate controls are in place