Use Case
Cyber Essentials Domain Audit
Preparing for Cyber Essentials or Cyber Essentials Plus certification? VP Shield checks the domain security controls that assessors look for — TLS, security headers, DNS hygiene, and more.
Run your pre-assessment scan →What's Checked
- TLS/SSL grade (relevant to secure configuration control)
- HTTP security headers check
- DNS hygiene and unknown internet-facing service detection
- Email authentication assessment
- Subdomain takeover risk (unknown internet exposure)
- Certificate validity and chain completeness
- Priority-ordered remediation checklist
- Cyber Essentials control mapping
Common Questions
- Does Cyber Essentials require domain security checks?
- Cyber Essentials covers five technical controls — firewalls, secure configuration, access control, malware protection, and patch management. Domain security controls (TLS grade, security headers, DNS hygiene) are relevant to the secure configuration and boundary firewall controls. Cyber Essentials Plus includes an external vulnerability assessment.
- Can VP Shield help me pass Cyber Essentials Plus?
- VP Shield helps you understand your external domain posture before the Cyber Essentials Plus assessor runs their own checks. Finding and fixing issues in advance dramatically reduces the risk of failing on avoidable findings. For a full pre-assessment, VantagePoint Networks provides paid Cyber Essentials preparation services.
- How often should I run domain checks for Cyber Essentials?
- Run a check before each annual Cyber Essentials renewal submission and after any significant infrastructure change (new hosting, new mail provider, new subdomains). The controls must be in place at the time of assessment, not just at some point in the past.
Run a free domain security scan
VP Shield checks DNS, TLS, email authentication, security headers, and subdomain takeover risk for any domain. Free, no login, two minutes.
Related Services
Stop Phishing Attacks Using Your Domain
Check whether your domain can currently be used in phishing attacks against your customers and staff. VP Shield assesses your DMARC, SPF, DKIM, and spoofing exposure — free, no login.
Check phishing exposure →GDPR Email Security Check
UK GDPR requires appropriate technical security measures for personal data. Check whether your email infrastructure meets UK GDPR Article 32 requirements — DMARC, DKIM, SPF, and TLS — free.
Run GDPR email check →Domain Security for Remote-First Teams
Remote working expands your attack surface. Check whether your domain email authentication, TLS, and security headers are configured to protect a distributed workforce from phishing and MitM attacks.
Check remote-working security →