🔴 27 April 2026 deadline — 28 days away — Cyber Essentials v3.3 becomes mandatory for all assessments
⚠ IMPORTANT DEADLINE: 27 APRIL 2026

Cyber Essentials v3.3 changes on 27 April 2026 —
are you ready?

The rules are changing. Every UK business renewing or applying for Cyber Essentials from 27 April 2026 must meet the new v3.3 requirements — or fail certification.

Personal phones that access work email are now in scope. Cloud services are now explicitly in scope. The rules on BYOD, home working, and remote access have all been tightened. Don't find out you're not compliant on assessment day.

Get the Full Pack — £297 Start with the Essentials — £97
27 April 2026 — v3.3 mandatory for all new and renewal assessments
BYOD devices — personal phones accessing work email are now explicitly in scope
Cloud services — Microsoft 365, Google Workspace, AWS: all in scope under v3.3
Remote workers — home-working endpoints must meet CE requirements regardless of location
Fail to comply — risk certification rejection, government contract loss, and increased cyber exposure
The Problem

Most businesses are not v3.3 ready — and don't know it

Cyber Essentials has been around since 2014. Many organisations assume that because they passed last year, they will pass again this year. That assumption is now dangerous.

The v3.3 update is the most significant change to the scheme in years. The NCSC and IASME have tightened scope definitions, clarified BYOD requirements, and sharpened the rules on cloud services and remote working.

Here is what organisations typically get wrong:

The result: certifications fail. Government contracts are at risk. Cyber insurers ask harder questions.

The solution is straightforward — if you know what to do.

The Solution

The Cyber Essentials v3.3 Readiness Pack — built by a CISM, CISA-qualified assessor

CISM CISA CEH CC MSc Data Science

Every document in this pack has been written by Michael Adedeji — CISM, CISA, CEH, CC — with over a decade of cybersecurity practice across UK public and private sector organisations. These are not generic templates. They are built specifically for Cyber Essentials v3.3 and designed for UK businesses of 1 to 250 employees.

Gap Assessments & Checklists

Identify your weaknesses before the assessor does.

Implementation Guides

Exactly what to configure, in plain English.

Scope Definition Guide

New v3.3 scope rules explained step by step.

Assessor Prep Guide

What assessors check — and why organisations fail.

What's Included

📁 Full Cyber Essentials v3.3 Readiness Pack — Six Documents

DOC 01

Cyber Essentials v3.3 Gap Assessment

A structured assessment covering all five CE controls against the new v3.3 requirements. Identify your gaps before your assessor does. Includes scoring, gap narrative, and recommended actions.

Starter PackFull Pack
DOC 02

Cyber Essentials Readiness Checklist

A detailed pre-assessment checklist covering every control, every sub-requirement, and every evidence item you need to collect before submission. Print it, work through it, tick it off.

Starter PackFull Pack
DOC 03

MFA Implementation Guide

Multi-factor authentication is now required for all cloud services in scope under v3.3. Covers enabling MFA in Microsoft 365 and Google Workspace, what counts as acceptable MFA — and what does not.

Full Pack
DOC 04

Patch Management Procedure

A ready-to-use procedure meeting CE v3.3 requirements. Covers Windows, macOS, mobile, cloud services, firmware, and browser extensions — with a patch log template your team can use immediately.

Full Pack
DOC 05

Scope Definition Guide

The v3.3 scope rules explained in full — including BYOD, cloud services, remote workers, and home workers. Includes a scope statement template you can complete and submit with your application.

Full Pack
DOC 06

Assessor Preparation Guide

What happens on CE and CE+ assessment day. What assessors check for each of the five controls. The most common reasons organisations fail — and what evidence to prepare. Includes day-of checklists.

Full Pack
Pricing

Choose Your Pack

🔵 Starter Pack
£97
Documents 01 and 02 only
  • Cyber Essentials v3.3 Gap Assessment
  • Cyber Essentials Readiness Checklist

Ideal for: organisations that want to run a quick gap check and understand where they stand before committing to full certification preparation.

Buy Starter Pack — £97
⭐ Most Popular
🟢 Full Pack
£297
All six documents
  • Gap Assessment + Checklist
  • MFA Implementation Guide
  • Patch Management Procedure
  • Scope Definition Guide
  • Assessor Preparation Guide

Ideal for: organisations actively preparing for Cyber Essentials or CE+ under v3.3. Everything you need in one download.

Buy Full Pack — £297
🔴 Full Pack + Expert Review
£797
All six documents + 1-hour review call
  • All six documents included
  • Review of your draft scope statement
  • Walk-through of your gap assessment results
  • Q&A on any of the five controls
  • Specific evidence guidance for your assessment
  • Honest readiness assessment for CE or CE+

Ideal for: complex infrastructure, upcoming CE+ assessments, or organisations that have previously failed Cyber Essentials.

A CISM + CISA qualified assessor's time typically costs £500–£1,000/hour. At £797 for the pack plus the call, this is exceptional value.

Book Full Pack + Review Call — £797
Why Trust Pyralink

Built by a qualified practitioner — not a content agency

Michael Adedeji is the founder of Pyralink Innovation Ltd. His credentials include:

CISM
Certified Information Security Manager (ISACA)
CISA
Certified Information Systems Auditor (ISACA)
CEH
Certified Ethical Hacker (EC-Council)
CC
Certified in Cybersecurity (ISC²)
MSc Data Science
University of Sunderland
CloudAuditX
Autonomous multi-cloud security auditing platform
This pack is not produced by a content agency or AI without oversight. It is produced by a qualified cybersecurity practitioner who understands what assessors look for — because he has been on both sides of the assessment process. Extensive experience advising UK SMEs on Cyber Essentials, ISO 27001, and GDPR compliance.
FAQ

Frequently Asked Questions

Do I need this pack if I already have Cyber Essentials?

If your certificate expires after 27 April 2026 or you are renewing after that date, yes. The v3.3 requirements apply from that date and the scope rules — particularly around BYOD and cloud — have changed significantly.

Is this for CE or CE+?

Both. Documents 01–04 apply to both. Document 06 covers CE+ specifically, including what happens during the verified assessment day.

What size organisations is this for?

Written for UK businesses of 1 to 250 employees. Relevant for sole traders, SMEs, charities, and public sector bodies of similar scale.

Does this pack certify me?

No. This pack prepares you for certification. The actual Cyber Essentials assessment must be conducted through an IASME-authorised certifying body. The pack ensures you are ready before you go through that process.

What if I have questions after purchasing?

The Starter and Full Pack are document-based downloads. For questions, email info@pyralink.co.uk. For hands-on help, the Full Pack + Review Call at £797 is the right option.

What format are the documents?

Markdown format (compatible with Word, Google Docs, Notion, Confluence). Formatted for immediate use — complete the templates, add your organisation name, and use them directly.

How quickly will I receive the documents?

Immediately after purchase. A download link will be emailed to you automatically.

What is the v3.3 deadline?

27 April 2026. From this date, all Cyber Essentials assessments must be conducted against the v3.3 requirements. If your current certificate predates v3.3, your renewal will be assessed against the new standard.

The deadline is 27 April 2026.

Don't arrive at your assessment day and discover your BYOD devices are in scope, your cloud platforms are not configured correctly, or your patch management process doesn't meet the 14-day requirement. Get the pack. Know where you stand. Fix it before the assessor finds it.

Buy Full Pack — £297 Starter Pack — £97 Full Pack + Call — £797