Norm awarded CREST Accreditations for its Cyber Incident Response and SOC-based services


MSSP has also achieved NCSC Cyber Incident Response Level 2 Assured Service Provider status

7 November 2023Norm, the managed security service provider for mid-sized organisations, today announced it has been awarded CREST accreditation and NCSC CIR Level 2 Assured Service provider status for its cyber security incident response service capabilities. It has also received CREST accreditation for its security operations centre (SOC) services. To achieve these certifications, Norm’s services have been assessed against demanding criteria to ensure its methodologies, knowledge, skills and expertise meet the highest standards. 

Norm is one of a select number of cyber security specialists to achieve NCSC CIR Level 2 Assured Service Provider status, which was launched in August 2023. This accreditation makes it easier for UK-based private companies, charities, local authorities and smaller government departments to identify cyber security partners with the requisite processes, expertise and skills to defend against – and recover from – ransomware and other financially-motivated cyber attacks.

“Congratulations to Norm for gaining both CREST Accreditation and NCSC Cyber Incident Response Level 2 Assured Service Provider Status for its incident response services,” said Rowland Johnson, President of CREST. “This achievement means Norm has been assessed as capable of supporting most organisations with common cyber attacks, such as ransomware. It provides demonstrable assurance to buyers of the high quality of the company’s incident response services.”

Norm’s Fareham-based SOC services have also been awarded CREST accreditation. Norm’s SOC team provides round-the-clock monitoring, vulnerability and patch management, as well as threat detection and response, to strengthen the cyber resilience of its customers.

“We are delighted to achieve these highly prestigious accreditations from CREST and the NCSC,” said Pete Bowers, COO at Norm. “Organisations don’t just need confidence that their cyber defences will withstand attacks, they also need to know that – if the worst happens and they are breached – they will be back on their feet as quickly as possible. These accreditations are a huge endorsement of our ability to both defend against and respond to attacks on behalf of our customers.”

Norm’s flagship managed service, smartbloc., provides enterprise-grade protection to organisations ensuring that their people, processes and technology controls are as robust as possible. In addition to its incident response and SOC services, the MSSP also has a team of ethical hackers and a lawyer-led team of data protection specialists further strengthening their security capabilities.  

Ready to tackle cyber security?

Request a meeting with a norm. expert to find out how our analysts keep you safe while you focus on what you do best: