All new certificates issued under the IASME scheme from 1 April 2020 have a 12-month expiry date.
Recertifying is like having an annual MOT for your cyber security controls. It gives your IT an essential annual check to protect against a wide variety of the most common cyber attacks.
If you do not recertify, you will no longer be certified under the Cyber Essentials scheme and will not be able to apply for contracts that require you to hold a valid Cyber Essentials certificate. You will be automatically removed from the directory of organisations awarded Cyber Essentials certification on the NCSC website after 12 months.
