Skip to content
Get Started. Free Consult
Services/SMB1001 Certification
Service · SMB1001 certification · CyberCert partner

SMB1001 certification, done with you.

We are a CyberCert partner, and we are SMB1001 Silver certified ourselves. So we help Australian small businesses get certified the guided way, from Bronze to Gold, with the governance and policy work that sits behind it. We have been through the workbook, not just read it. Perth-based, working Australia-wide.

Book a readiness chatSee AI security
5 tiers
Bronze to Diamond
Silver
our own SMB1001 certification
Partner
CyberCert.ai
Perth
in-person or remote AU-wide
01The standard

A cyber standard built for small business.

SMB1001 gives smaller businesses a credible, affordable way to prove their cyber security, without the cost and weight of ISO 27001.

It is a tiered standard maintained by Dynamic Standards International and certified through CyberCert. You pick the tier that fits where you are, complete the workbook, and get a certificate and badge you can show clients, insurers and tender panels. The current edition is SMB1001:2026.

In short

  • Built specifically for small and medium businesses.
  • Five tiers, so you start where you are and grow.
  • Self-attested at the lower tiers, audited at the top.
  • Recognised by clients, insurers and tender panels.
02The tiers

Five tiers. Start where you are.

05 tiers, additive
Each tier builds on the one before it.
Bronze
Self-attested

The essentials: IT support, firewall, anti-malware on every device and automated backups.

Silver
Self-attested

Adds multi-factor authentication, individual logins, timely patching and staff awareness training. Our own tier.

Gold
Self-attested

Adds endpoint protection, email authentication, monitoring and a documented incident response plan. The common target for tenders and insurance.

Platinum
Independent audit

Managed detection, regular vulnerability assessments and a tested incident response, verified by external audit.

Diamond
Independent audit

Continuous monitoring and analytics with ongoing external assurance. The highest tier.

Not sure?
We help you choose

We assess where you are and recommend the tier that matches your clients, contracts and risk, then plan the path.

tier requirements summarised for guidance; the SMB1001:2026 workbook is the definitive source.

03Comparison

SMB1001 and the Essential Eight, together.

People often ask whether SMB1001 replaces the Essential Eight. It does not. The Essential Eight is a technical baseline from the Australian Cyber Security Centre with no certificate attached. SMB1001 is certifiable, and it wraps governance, policy and training around the same kinds of controls.

Because the control sets overlap, work you do for one counts toward the other. If you have already started on the Essential Eight, you are part of the way to SMB1001. We line the two up so you are not doing the same thing twice. This pairs naturally with our AI security and data and privacy advisory work.

Why certify

  • Win and keep contracts. Answer tender and supply-chain security questions with proof, not promises.
  • Support cyber insurance. A recognised certification helps with cover and due diligence.
  • Earn client trust. A verifiable badge shows you take data seriously.
  • Meet good practice. Supports the safeguards expected under the Privacy Act 1988.
04Why us

Certified ourselves. Partnered with CyberCert.

Plenty of providers can point you at the SMB1001 workbook. Fewer have been through it. We are a CyberCert partner and we hold SMB1001 Silver certification ourselves, so we know exactly what each control asks for and where small businesses get stuck.

Governance is our speciality. We do not just tick controls; we leave you with the policies, the staff understanding and the habits that keep the certification meaningful at renewal. Practical, jargon-free, and sized for a small business.

Our own SMB1001 Silver certification
05Process

How we get you certified.

01 · assess

Readiness & gap check

A straight look at where you are against your target tier, and what is missing. No jargon.

02 · implement

Close the gaps

We help put the controls, policies and training in place, working with your IT or ours.

03 · certify

Through the workbook

We guide you cleanly through the CyberCert workbook and attestation for your tier.

04 · renew

Renew & progress

Annual renewal handled, with a plan to move up a tier when your contracts call for it.

CyberCert charges a modest annual certificate fee that varies by tier. The real work is implementing the controls behind it, which we quote per engagement after the readiness chat, so you know the scope before you start.

06Clients

What our clients say.

Josh and the VibeZero team turned a mess of ideas into a working product faster than I thought possible. They actually listened to what we needed, didn't overcomplicate things, and delivered something our team could use straight away. Genuinely one of the best tech experiences I've had as a business owner.
NK
Natasja KleinmanFounder, Flexi Tribe
Working with VibeZero was refreshingly straightforward. No jargon, no upselling, just solid work delivered on time. They understood our business from the first call and built exactly what we asked for. I'd recommend them to any small business looking to actually get results from AI.
BG
Blake GoodDirector, Good Designs
07Related

The full capability list.

Consulting, automation, security and training, plus the build and fix work when you need it. These are the eight we lead with; 25 in total. Your AI consultant in Perth, working nationally.

01

AI Consulting

Map your ops, find where AI makes sense, build an implementation plan your team can follow.

Learn more02

Automation

n8n, Make, Power Automate, custom integrations. The boring weekly tasks, automated.

Learn more03

AI Security & DLP

Stop data leaking into AI tools. Usage policy, M365 controls, Privacy Act and Essential Eight aligned.

Learn more04

AI Training

Hands-on workshops. Actual workflows for Claude, ChatGPT and Copilot your staff use Monday.

Learn more05

App Development

Apps, tools, MVPs and internal systems built with AI-assisted dev, with senior engineering oversight.

Learn more06

Vibe Code Audit & Fix

Built with Claude, Cursor, Bolt or Lovable? We find what's broken, patch it, hand it back production-ready.

Learn more07

AI Agents

Custom agents for CRM, accounting, project management. Built with Claude, GPT and MCP.

Learn more08

Agentic Coding

Autonomous coding agents build features end-to-end. We review, steer, and ensure production quality.

Learn more
See all 25 services
08FAQ

Frequently asked questions.

SMB1001 is a tiered cyber security standard built specifically for small and medium businesses, as a practical alternative to enterprise frameworks like ISO 27001. It is maintained by Dynamic Standards International (DSI) and certified through CyberCert. The current edition is SMB1001:2026.

Bronze, Silver, Gold, Platinum and Diamond, each building on the last. Bronze through Gold use director self-attestation; Platinum and Diamond require an independent external audit. For most SMBs answering tenders, supply-chain questionnaires or insurer requirements, Gold is the practical target. Many start at Bronze or Silver and progress.

No, and they work well together. The Essential Eight is a technical baseline with no certification attached. SMB1001 is certifiable and adds the governance, policy and training layer around those controls. The control sets overlap, so work you do for one counts toward the other.

CyberCert charges a modest annual certificate fee that varies by tier. The larger investment is implementing the controls behind the certificate. We quote our guided implementation per engagement after a short readiness chat, so you know the scope before you commit.

We are a CyberCert partner and we are SMB1001 Silver certified ourselves, so we have been through the workbook rather than just read it. Governance is our speciality. We run the gap assessment, help implement the controls, and get you cleanly through certification and annual renewal.

We are Perth-based and work in person across the metro area, and we support businesses Australia-wide remotely.

Ready to get SMB1001 certified? Let's find your tier.

Book a readiness chatSee AI security

CyberCert partner, SMB1001 Silver certified. Perth and remote across Australia.