FPT wins UK Cyber Essentials security certifications

FPT has obtained Cyber Essentials and Cyber Essentials Plus certifications in the UK under a government-backed scheme linked to baseline cyber security standards.

The dual accreditation followed an independent assessment of its security controls, including tests on end-user devices across multiple operating systems. Cyber Essentials is awarded through a verified self-assessment, while Cyber Essentials Plus requires technical verification and hands-on testing.

Established by the National Cyber Security Centre, the scheme is designed to help organisations defend against common cyber attacks. Its five core control areas are firewalls, secure configuration, user access management, malware protection, and security update management.

For the higher certification tier, assessors also conduct vulnerability scanning, authentication testing, malware protection verification, and device-level inspections. FPT said it also strengthened patch management procedures and security governance processes as part of the work required to secure the certifications.

The move comes as cyber risk remains high for UK organisations. The UK Government's Cyber Security Breaches Survey 2025 found that 43% of UK businesses and 30% of charities reported a cyber security breach or attack in the previous 12 months.

Separate IBM data found the global average cost of a data breach reached USD $4.88 million in 2024. That has increased pressure on technology suppliers and service providers to show customers, regulators, and supply chain partners that their controls are in place and working.

Cyber Essentials and Cyber Essentials Plus have become common benchmarks for businesses operating in regulated sectors or supplying public sector bodies. They are often used to check whether basic technical controls are embedded in day-to-day operations rather than simply outlined in policy documents.

Mark Scrivens, Chief Executive Officer of FPT UK, said customers are placing greater emphasis on evidence of cyber resilience as attacks become more sophisticated and artificial intelligence reshapes the threat landscape.

"Cyber threats today move faster and hit harder than ever. The rapid adoption of AI is lowering the barrier to entry for attackers while simultaneously increasing the complexity of the environments organisations need to protect," Scrivens said.

"Enterprise leaders are asking how quickly they can improve resilience, strengthen governance and demonstrate trust to customers, regulators and stakeholders. Achieving both Cyber Essentials and Cyber Essentials Plus reflects our commitment to helping organisations meet those expectations with confidence."

Security focus

FPT said the new certifications add to a broader cyber security portfolio that includes offensive security, cyber defence, digital risk management, managed security operations, cloud security, and AI security. It also holds CREST accreditation, has AWS Partner status, and is a member of the Microsoft Intelligent Security Association.

Headquartered in Vietnam, the business operates in more than 30 countries and territories. It reported revenue of USD $2.66 billion in 2025 and said it employs more than 54,000 people across its core businesses.

Within cyber security, FPT said it has more than 300 certified professionals and delivers more than 300 security engagements worldwide each year. It also said it has more than 30,000 AI-augmented engineers supporting customers across industries and markets.

FPT positioned the certifications as part of a broader effort to meet enterprise demand for secure digital transformation, cloud migration, and AI adoption. That demand has grown as organisations face greater scrutiny over operational resilience, third-party risk, and the handling of sensitive data.

Scrivens said cyber security is also affecting competitive positioning. "For many organisations, cybersecurity is a competitive differentiator. Customers want evidence that their technology partners can protect critical systems and sensitive data. These certifications provide an independently verified benchmark that demonstrates our ability to operate securely and responsibly."

He added that clients are seeking support across a wider range of risks linked to AI and cloud adoption. "Organisations are embracing AI, cloud platforms and connected technologies at unprecedented speed, but innovation must be matched by security.

"Our clients can draw on the full breadth of our cybersecurity expertise, from offensive security testing and threat detection to cloud security, AI security and digital risk management. Our objective is to help customers innovate securely while maintaining resilience against an increasingly sophisticated threat landscape."