Australian Cyber Essentials (ACE)
certified by Bureau Veritas

In today's interconnected business landscape, your organisation's cyber security is inseparable from the cyber security posture of every partner and supplier in your digital supply chain.

A single vulnerability in a third-party provider can result in financial loss, reputational damage, and regulatory scrutiny, with executives and boards increasingly expected to demonstrate oversight of third-party risk.

THE HIDDEN RISK IN YOUR SUPPLY CHAIN

Large organisations face mounting pressure to manage third-party cyber security risk, but the process is often fraught with:

→  Lack of standardisation
→  Supplier resource constraints
→  Insufficient due diligence
→  Growing regulatory and governance expectations

A practical, evidence-based solution

Australian Cyber Essentials (ACE), certified by Bureau Veritas, is a three-level, evidence based cyber security assurance framework designed for supply chains. It is suitable for all suppliers and particularly valuable for suppliers starting their cyber security journey, or suppliers who can already evidence maturity and want a credible, repeatable way to demonstrate it.

ACE was developed by experienced cyber security specialists over an extended period, curating practical, evidence ready controls from recognised standards and Australian regulatory expectations, and packaging them into a supplier friendly assurance pathway that can scale.

A streamlined path to certification

  1. Supplier completes a plain English assessment aligned to ACE requirements
  2. Supplier submits evidence through an online portal to demonstrate controls and mechanisms are in place
  3. Supplier is supported by 12 guided workshops (12 × 1 hour) delivered by Cyber Audit Team, delivered over up to 12 months or accelerated
  4. Bureau Veritas independently reviews the evidence and issues certification when requirements are met

Not self-attested. Evidence reviewed. Certification issued by Bureau Veritas.

ACE Cert Partner

Three certification levels

  • ACE Ready

    Essential controls, evidenced

  • ACE Robust

    Strengthened controls, evidenced

  • ACE Resilient

    Mature controls and recovery readiness, evidenced

Key benefits for enterprises

✓  Reduce third-party cyber security risk across the supply chain
✓  Gain more consistent visibility into supplier cyber security posture
✓  Demonstrate a defensible approach to supplier assurance for governance, risk, and compliance stakeholders
✓  Reduce the cost and complexity of managing supplier assurance compared to repeated questionnaires and bespoke reviews

Key benefits for suppliers

✓  Achieve an independently issued certification from Bureau Veritas
✓  Demonstrate cyber security maturity to multiple customers using a reusable evidence pack and certification (customers may still request additional checks depending on criticality and risk context)
✓  Improve internal cyber security practices with clear prioritisation and structured guidance
✓  Reduce assessment fatigue and duplicated effort across customers 

Contact us to learn more about Australian Cyber Essentials (ACE), certified by Bureau Veritas, and request a demonstration.

*Mandatory fields

Fill out your information