Fixed-price estimate based on standard rates for your organisation size. Confirmed at point of engagement.
🔒
FREE CYBER INSURANCE INCLUDED*
UK organisations with a turnover under £20 million that achieve Cyber Essentials certification covering their whole organisation are automatically entitled to free cyber insurance up to £25,000 - provided through IASME in partnership with leading insurers. Included at no extra cost.
* Free cyber insurance is available to UK-registered organisations with annual turnover under £20m, certification scoped to the whole organisation. Subject to IASME insurance partner terms and conditions.
PENETRATION TESTING is scoped and priced individually based on your environment, the number of targets, and test type. All engagements include a detailed report with CVSS-scored findings and remediation guidance. A retest can be included - ask us when scoping. Contact us for a fixed-price scoping call.
We identify gaps before you formally submit, helping you go in as prepared as possible.
💰
NO HIDDEN FEES
The price you see includes the IASME certification fee. No mandatory consultancy bundles or platform access fees.
📍
UK-BASED TEAM
All assessments conducted by experienced UK-based cyber security professionals.
⚡
WORKS TO YOUR DEADLINE
Urgent tender? We work to your timeline. Contact us to discuss fast-track options.
🛡️ FREE CYBER LIABILITY INSURANCE - UP TO £25,000
UK organisations with annual turnover under £20m automatically receive free cyber liability insurance up to £25,000 with their Cyber Essentials certificate. No extra cost, no separate application - included as standard for whole-organisation scope.
// Pricing FAQ
PRICING QUESTIONS
Cyber Essentials costs from £320 + VAT for micro organisations (0–9 employees), £440 + VAT for small (10–49), £500 + VAT for medium (50–249), and £600 + VAT for large organisations (250+). These prices are set by IASME and include the certification fee in full - there are no hidden charges at Vincent Cyber Defence.
Yes. The prices shown for Cyber Essentials include the IASME certification fee, assessor review, guided submission support, certificate and digital badge, and UK-based support throughout. There are no mandatory add-ons and no platform access fees.
Organisation size is based on total number of employees across the whole organisation, using UK Government criteria: Micro (0–9), Small (10–49), Medium (50–249), Large (250+). This applies regardless of how many employees are in scope for the certification assessment.
UK-registered organisations with an annual turnover under £20 million that achieve Cyber Essentials covering their whole organisation are automatically entitled to free cyber insurance up to £25,000. This is provided through IASME in partnership with insurers and is included at no additional cost. Subject to IASME insurance partner terms.
Our process includes guided submission support before you formally submit, helping you identify and address issues in advance. However, if your submission is not compliant and a resubmission is required, additional fees may apply depending on the work involved. We will always be transparent about any costs before proceeding, and we will support you through the process every step of the way.
Once your assessment application is opened, you have up to six months to complete and submit it. This gives you time to implement any required controls before submission. However, your certificate validity date runs from the date of certification - so the sooner you submit, the longer your certificate remains active. We recommend not delaying unnecessarily if your controls are already in place.
Once you pass Cyber Essentials basic, you have 90 days (3 months) from your CE certification date to complete and pass CE Plus - a separate and shorter window from the CE basic six-month assessment period. If issues are found during the CE Plus audit, you also have 30 days from the date the assessment started to remediate and have checks revisited. Both windows apply simultaneously, so it is important to start promptly and be well-prepared before the audit begins. If CE Plus is not passed within either window, the Plus application closes and you will need to re-certify at CE basic level before restarting - incurring an additional cost.
Yes. If you have an urgent requirement - a tender closing date, a contract requirement, or a client deadline - contact us and we will work backwards from your deadline to prioritise your assessment. Get in touch as early as possible to give us the best chance of meeting your timeline.
Cyber Essentials Plus starts from £1,399 + VAT for micro organisations (0–9 employees), £1,699 + VAT for small (10–49), £2,399 + VAT for medium (50–249), and £3,499 + VAT for large organisations (250+). All prices include the IASME certification fee and are quoted as a fixed price with no hidden charges.
CE Plus pricing includes the self-assessment questionnaire, independent technical audit, external vulnerability scanning, device configuration checks, CE Plus certificate and badge, IASME public register listing, full technical report, audit readiness checklist, and a retest to verify fixes. Pricing is indicative - contact us for a fixed quote for your specific environment.
Gap analysis - reviewing your controls against CE Plus requirements and identifying any issues before the formal audit begins - can be included in your assessment fee. Simply let us know when you get in touch and we will factor this into your quote. There is no obligation to take it up, but many clients find it useful if they are unsure whether their environment is fully ready for the technical audit.
A retest is not included as standard but can be added to any penetration testing engagement. Once you have remediated the findings, we re-test the affected areas to confirm the vulnerabilities have been successfully resolved. Ask us about including a retest when scoping your engagement.
The quote builder on this page gives you an instant fixed-price estimate in two steps. First, select your certification type (Cyber Essentials, CE Plus, or DCC Level 0). Then select your organisation size. If you need Cyber Essentials as a prerequisite for CE Plus or DCC, the builder adds it automatically. The result shows an itemised breakdown with a fixed total - IASME fee included, no hidden costs.
Contact us to discuss renewal pricing. Returning clients benefit from a smoother, faster process as we already understand your environment - which typically means less time and a more streamlined assessment.
// Client Reviews
WHAT OUR CLIENTS SAY
★★★★★
"Completely transparent from the start - the price we were quoted was the price we paid. No add-ons, no surprises. Certified first time and couldn't have been easier."
- MANAGING DIRECTOR / UK SME
★★★★★
"We needed CE and CE Plus together for a government contract. VCD quoted both upfront as a single fixed price and delivered on time. Excellent value and a professional service."
- OPERATIONS DIRECTOR / Professional Services
★★★★★
"The quote builder made it easy to understand exactly what we needed before we even made contact. Clear pricing, clear process, and a great result first time."
- IT MANAGER / Technology Company
Client names are withheld in line with confidentiality requirements; character references are available upon request.
READY TO GET STARTED?
Build your quote above or talk to our UK-based team. Fixed prices, no hidden fees, no hard sell.