IASME Cyber Assurance


Governance standard for SMEs

Although ISO27001 is the globally recognised benchmark for Information Governance, smaller organisations find it challenging to get certified due to cost and effort involved.

Organisations also choose IASME standard as a stepping stone to achieving the ISO27001 at a later stage.

IASME (Information Assurance for Small and Medium Enterprises) Cyber Assurance enables you to demonstrate your organisation’s overall maturity level for good security practices and that you are taking proper steps to protect customer information. It includes an assessment of your General Data Protection Regulations (GDPR) compliance.

A risk-based assurance, IASME looks at aspects such as physical security, staff awareness and data backup. If you are looking for assistance with achieving IASME Cyber Assurance, then our expert team can help, whether you choose self-assessment or an on-site independent audit.

IASME Self Assessed

IASME Cyber Assurance Self-assessed

You can choose to use the self-assessed certification option, completing an online questionnaire about the controls you have in place governing information assurance.

If you would like guidance in completing the process, we offer access to a simple and secure online portal and can provide support and advice when you need it.

Micro organisations (0 - 9 employees)
Self certification Buy: £300 + VAT
Small organisations (10 - 49 employees)
Self certification Buy: £400 + VAT
Medium organisations (50 - 249 employees)
Self certification Buy: £450 + VAT
Large organisations (250+ employees)
Self certification Buy: £500 + VAT

IASME Cyber Assurance level 2

IASME Cyber Assurance Audited

The IASME Cyber Assurance accreditation offers a similar level of assurance to ISO 27001, but is easier and more cost-effective for SMEs to implement. It is the IASME’s highest level of certification, demonstrating that your organisation’s security has been audited by an expert, skilled, independent third-party.

If you would like assistance in achieving the certification, our experienced team can give you guidance.

What our clients think

grey line

“I find the team at RightCue to be very professional, with a strong, broad and deep technical and governance knowledge of cyber-security. I know I can rely on them to turn assessments around quickly and give our clients good advice when they need to make changes. They are one of our longest standing assessors.”​”


Get in touch with us

For further information or to arrange a consultation call RightCue Assurance on

+44 (0)1256 260780

LinkedIn   Twitter