Cyber Essentials Plus Monitoring
Continuous Cyber Essentials v3.1 control monitoring + evidence pack auto-refresh + NCSC scheme alerts. Designed for already-certified organisations.
🔄 CONTINUOUS COMPLIANCE — POST-CERTIFICATION MONITORING
Cyber Essentials v3.1 (April 2026) introduced cloud, software-definition and passwordless requirements that change throughout the year as suppliers update their services. A one-time certification is stale 3 months after issue. Continuous monitoring keeps your evidence pack audit-ready and surfaces drift before your renewal window.
Cyber Essentials Plus — Continuous Monitoring (£49/month)
Designed for organisations already certified (or preparing) under Cyber Essentials v3.1. Monthly automated checks against the five technical control families, evidence pack auto-refresh, and alerts when the NCSC scheme updates affect your scope.
- Monthly Control Audit: Firewalls, secure configuration, user access, malware protection, patch management — automated checks against current v3.1 criteria, drift report.
- Cloud Service Inventory: Track which SaaS/IaaS services fall in scope as your stack grows, baseline review on each new addition.
- Passwordless & MFA Posture: FIDO2/WebAuthn coverage, password manager rollout, exception register.
- Evidence Pack Auto-Refresh: Screenshots, configuration exports and policy snapshots refreshed every 30 days — ready for your renewal assessor.
- NCSC Scheme Watch: Alerts when CE v3.x updates affect your in-scope assets — no surprises at renewal.
- Backup Recovery Test Logs: Quarterly restore-test log entries kept ready for assessor review.
- Renewal Window Brief: 60-day-before-renewal report summarising changes since last certification.
- Incident Response Drill Log: Annual drill record ready for assessor evidence pack.
💷 THE MATHS
£49/month = £588/year. Failed renewal due to cloud-scope drift = re-certification cost (£300-500 + consultant £1,500-3,000) + reputational damage on tenders. One avoided failure pays a decade of monitoring.
📅 How this subscription works — month-1 to month-12
- Day 1 onboarding: instant portal access, automated onboarding checklist and baseline assessment intake — getting started guide delivered automatically.
- First week setup: integrations wired, first report generated, MLRO / DPO / IT lead invited to the portal.
- Ongoing monthly delivery: updated compliance report, new-regulation tracker delta, audit-trail snapshot, continuous regulatory updates aligned to your sector.
- Cancellation: cancel any time from the portal — no contract lock-in; 30-day data export window after cancellation.
⚠️ Legal disclaimer (COMPLIANCE): This product is provided for information and compliance documentation only; it is not regulatory advice. Read the full disclaimer below or in our Terms of Service before purchase.
£49.00/mo
MONTHLY SUBSCRIPTION · No VAT (not registered)
Get this in SME Cyber Starter Bundle
Save £58/mo (37%) vs standalone →
Trust & Delivery
ICO registered ZC112810
UK Information Commissioner's Office data controller registration.
Companies House 16419201
SummitBridge Horizon Ltd — registered 30 April 2025, London.
14-day satisfaction guarantee
See refund policy for full terms.
Sample materials available
No direct competitor
As of the latest market scan, this product stands alone.
No UK provider sells continuous CE v3.1 monitoring as a standalone subscription — point solutions cover one control family or charge consultancy day rates.
Compliance Snapshot
Regulatory posture for this product — for procurement and security teams.
Conformity scaffold in place — formal record not yet published