IASME Cyber Assurance

What is IASME Cyber Assurance?

IASME Cyber Assurance (ICA) is a comprehensive, UK-based security certification designed specifically for SMEs to demonstrate a high level of information assurance without the massive cost associated with ISO 27001.

Think of it as "Cyber Essentials Plus Governance." While Cyber Essentials covers the locks on your digital doors, ICA covers the management, policies, and people behind those doors.

The 14 Key Controls

To get certified, an organisation must demonstate they are compliant with 14 different controls under 4 main themes:

  1. Identify & Classify: Identifying your assets and allocating priorities

  2. Protect: The policies, procedures and processes your organisation implements to protect critical assets

  3. Detect & Deter: How your organisation keeps an eye for intruders and how they can prevent any escalations

  4. Respond & Recover: If a Cyber Incident occurs, how your organisation reacts and recovers

    If you would like to learn more, Benjifort recommends visting the IASME ICA page.

  • Show cyber security assurance and resiliance throughout your supply chain.

  • Demonstate data protection and GDPR compliance

  • A pre-requisite for many government contracts

Why do I need it?

  • Think of ICA as the "Professional Upgrade" to Cyber Essentials. You need it to:

    • Win Better Contracts: It’s a "mini-ISO 27001" that fulfills high-level tender requirements (like MoD or NHS) without the massive cost.

    • Prove GDPR Compliance: Unlike technical standards, ICA audits your data privacy, policies, and legal handling of information.

    • Insure Your Survival: It forces you to have a Plan B (Business Continuity) so you can recover if you’re hit by a fire, theft, or breach.

    • Build Total Trust: It proves to clients that your people and processes are as secure as your computers.

    In one sentence, ICA is needed to move beyond "basic IT security" and prove you are a resilient, compliant, and low-risk business partner.

Speech bubble with the word "WHY" and a question mark in a circle above it.

How much does it cost?

Benjifort offers two forms of IAMSE Cyber Assurance Level 1:

  • A discounted package for companies who need less assistance to certify

  • An assistance package to help guide SME’s to success

ICA Level 1 is charged at a flat rate of £300 - £550 (plus VAT) depending on the organisation size with additional optional support.

For ICA Level 2, the price varies on the organisation size and complexity. A micro organisation may cost around £1200 (plus VAT), whereas a large organisation requires a larger review process. Benjifort would be happy to provide a quote below:

Illustration of two hands shaking, one with an orange sleeve and the other with a purple sleeve, symbolizing agreement or partnership.

Enquire about ICA Level 1 & 2 Below