Cyber Essentials Tied To Fewer Cyber Insurance Claims In UK Data

by

Estimated reading time: 3 minutes

The UK government started the ‘lock the door’ campaign on February 17, 2026. Officials want more organizations to use Cyber Essentials, a UK cybersecurity certification that sets basic security controls against common attacks. They report that organizations with Cyber Essentials made 92% fewer insurance claims last year. The Cyber Security Longitudinal Survey supports this push, showing that 82% of medium and large businesses had a cyber incident in the past year. Dr Richard Horne, CEO of National Cyber Security Centre, said, “Many small business owners assume their business is too small to be on cyber criminals’ radar, but in reality, we know most attackers don’t care about size, reputation or logos – they are looking for opportunity and weaknesses.”

The government says these numbers prove that cyber criminals target all types of organizations. The average cost of a major incident is now £195,000. In the last year, half of small businesses reported a breach or attack.

UK government ‘Lock The Door’ campaign graphic promoting Cyber Essentials to protect businesses from online threats and cyber insurance benefits
Cyber Essentials Targets Common Entry Points

The campaign will appear on social media, podcasts, radio, and business networks. It aims to give busy small and medium businesses practical steps. Cyber Essentials sets out five basic controls:

  • Firewalls
  • Secure configuration
  • Software updates
  • User access control
  • Malware protection

Officials say attackers often take advantage of unpatched software and weak access settings. “I urge all businesses to implement the five key security controls to help protect themselves against the most common, damaging online threats,” said Horne.

Tools And Guidance Aim To Speed Adoption

The campaign points to free resources to help with certification. The Cyber Essentials Readiness Tool offers an online self-assessment. Small and medium businesses can book free 30-minute consultations with an NCSC-approved adviser. Businesses can also look at the Cyber Essentials question set and review infrastructure needs before applying.

See also  Market Growing at Sizzling 22.6% CAGR: Cyber Insurance Market Analysis from Data Bridge
Watch our newest Podcast with Glen Williams, CEO of UK Cybersecurity Firm Cyberfort

Cyber Insurance Relevance Increases For Certified Firms

Officials say certification leads to better risk outcomes and fewer claims. It can also help when bidding for government contracts. Eligible businesses can get free cyber insurance through the delivery partner, which includes a 24/7 emergency helpline for support. Cyber Essentials can also help with insurance underwriting and renewals, as insurers often ask for proof of access controls and patch management.

Cyber Security And Resilience Bill Adds Policy Pressure

Ministers also mentioned the Cyber Security and Resilience Bill. The Bill aims to make resilience rules stronger for essential and digital services. It also focuses on key suppliers that support critical operations. The government named energy, water, healthcare, and data centers as top priorities.

Martin Hinton

Martin Hinton is the Executive Editor and Publisher of Cyber Insurance News and Information. With over three decades of journalism experience across six continents, his work encompasses investigative reporting, documentaries, and coverage of cultural, political, and business news. To learn more about his career, click on his name to visit his LinkedIn page.

Leave a Comment

×