Become a Certified Cyber Security Consultancy

Created:  23 Oct 2015
Updated:  13 Aug 2018
Certified Cyber Security Consultancies deliver a wide and complex range of cyber security consultancy service to government, the wider public sector and CNI. Every certified consultancy meets the NCSC's standards for high quality tailored expert cyber advice.

The Certified Cyber Security Consultancy scheme accommodates companies of all sizes. Evidence required for certification is appropriate and proportionate to the size of the company and the consultancy service team.

Before applying make sure that you read the Professional Cyber Services application form (which is included here for information only) and the Cyber Security Consultancy Standard. You then need to register for a mandatory briefing by using the Contact us form to send your details. An application form will be sent to you following the briefing. The form details the extent, and the way, in which evidence needs to be provided to support your application. Only fully completed applications will be assessed.

If your application is successful, we aim to advise you of your interview date around 8 weeks after we have received and processed your application form. You are strongly advised to ensure that the nominated Service Owner attends the interview as well as the Head Consultant. You will receive a certificate showing which of your service offerings have been certified.

If your application is unsuccessful we can provide feedback on the areas where more evidence is needed, or the assessment criteria were not met.

It is important that companies who have not been successful make the changes needed before re-applying. To give companies time to do this we have limited applications to no more than three against any service offering and Head Consultant in any 12-month period.

There are membership benefits and costs in becoming a certified consultancy.  Here's the information we give potential purchasers of certified consultancy services.

Procurement Agreement for Certified Cyber Security Consultancies

The central dedicated procurement route for government and wider public sector procurement buyers to obtain cyber security services is the Crown Commercial Service (CCS) Procurement Agreement for Cyber Security Services. As a Certified Consultancy you will need to bid for a place on the Agreement.

If your company has applied, or intends to apply, to become a certified consultancy, you can respond to any current invitation to tender for the Procurement Agreement issued by CCS, even if you have not yet been certified.  Companies accepted onto the Agreement will only be available for customers to use once they are NCSC certified. See the CCS procurement pipeline for details of upcoming procurements.


PDF, 212.22KB

This file may not be suitable for users of assistive technology.


PDF, 239.66KB

This file may not be suitable for users of assistive technology.

Was this information helpful?

We need your feedback to improve this content.

Yes No