Please provide a list of network equipment that will be in scope for this assessment (including firewalls and routers).
What this question is really asking
List all firewalls, routers, switches, and other network infrastructure within scope. Include make, model, and quantity where possible. Assessors will cross-reference this list against your firewall and patching answers — any equipment you list must be compliant.
What satisfies this requirement
A list is requiredMust include make, model AND quantity. Include all equipment controlling data flow. Exclude switches/WAPs without firewall. Home/remote workers: describe software firewalls in notes. Do not include home environment routers/firewalls. No IP/MAC/serial numbers.
What to prepare before your assessor visit
List accurately and completely — don't omit a device because you think it might not meet the standard. Assessors strongly prefer an honest complete list that then has compliance gaps addressed, over discovering unlisted equipment later. Omissions that surface during assessment look deliberate, even when they aren't.
How this question sits across CE versions
Related policy templates
Getting certified means having documentation to back it up. These policy templates cover the controls this question tests.
Does your organisation meet this requirement?
Answer 30 plain-English questions and find out exactly where you stand across all 5 Cyber Essentials control areas — with a prioritised list of what to fix first.