A client or insurer asked for evidence of your security posture. SMB1001 Bronze is the verifiable answer.
SMB1001 Bronze is the ASD's cybersecurity certification for small businesses โ 12 controls, independently verified, and recognised by the businesses and insurers who now ask for it. CyberCraft guides you from gap assessment to certified in six weeks.
"A client's vendor onboarding form asked whether we hold SMB1001 Bronze certification. No one in the business knew what it was."
The question has been asked. SMB1001 Bronze is the answer โ and most businesses are closer to certification than they think.
"A government tender we're bidding on listed SMB1001 Bronze as a preferred supplier attribute. A competitor already has the badge."
Certification is becoming a differentiator in AU government and enterprise procurement. Starting now gives you the badge before the next tender.
"Our insurer asked about SMB1001 as part of a cyber insurance renewal questionnaire. We've never heard of it."
Insurers are moving toward certification as a prerequisite, not just a question. CyberCert Bronze is increasingly the threshold.
"I saw the CyberCert accreditation badge on a competitor's website. I want that badge too โ what does it take?"
CyberCraft has guided dozens of businesses through CyberCert accreditation. The gap between where you are and certified is usually smaller than expected.
SMB1001 Bronze covers 12 cybersecurity controls that address the most common attack vectors for small businesses โ credential theft, phishing, ransomware, and unauthorised access. Unlike a self-assessed checklist, SMB1001 Bronze requires independent verification by an accredited assessor and issues a certificate from the CyberCert registry that your clients and insurers can look up.
Multi-factor authentication
Secure backups
Patching and updates
Access control
Phishing-resistant email
Secure configuration
Antivirus and anti-malware
Firewalls and network security
Secure remote access
Staff training and awareness
Incident response
Supply chain security
Gap assessment against all 12 Bronze controls
Pass/fail assessment. For each failing control, a specific remediation action โ not a vague recommendation.
Remediation support
CyberCraft works through each gap โ helping you implement controls or document existing practices that already meet the standard but haven't been recorded.
Evidence pack preparation
All twelve controls documented with evidence in the format the CyberCert audit requires. Evidence quality is the most common reason certification takes longer than it should.
CyberCert audit and badge issued
CyberCraft coordinates the formal audit booking with CyberCert, joins the audit call, and supports any queries from the auditor. The CyberCert audit fee is paid directly to CyberCert โ it is not included in this scope.
SMB1001 Certification โ Pricing Configurator
Your price depends on your starting point, not a discovery call.
โณ JS configurator to be built. Note: CyberCert audit fee (~$350) paid direct to CyberCert, not included here.