NormCyber achieves ISO27001:2022 accreditation, reinforcing its commitment to information security


Becomes British Assessment Bureau partner and one of the first companies to be certified under the new standard

22 August 2023NormCyber, the managed security service provider for mid-sized organisations, today announced it has achieved ISO 27001:2022 accreditation, demonstrating the highest levels of information security compliance. As one of the first MSSPs to be certified under the updated standard, NormCyber is uniquely positioned to guide its customers through the assessment and promote cybersecurity and data protection best practices across the industry.

ISO 27001 is an internationally-recognised standard for information management systems. It proves an organisation’s commitment to the security of its customer, employee and shareholder information. ISO 27001:2022 is the latest iteration of the standard, providing more rigorous and comprehensive controls for cyber risk management.

Following the attainment of the certification, NormCyber has also become an Official Partner of British Assessment Bureau (BAB), one of the UK’s leading UKAS-accredited ISO certification bodies and training providers. Through this affiliation, NormCyber is now able to assist those organisations that use BAB as their certification body, with their ISO 27001 accreditation journey. This involves understanding the steps needed to achieve certification; implementing the necessary policies and controls required by the standard; conducting mock audits prior to external certification; or assistance with transitioning to the new 2022 version.

NormCyber offers mid-sized organisations – many of which underpin the UK’s critical infrastructure – help with accreditation through ongoing assessments, real-time reporting and consultancy support. Its flagship managed service, smartbloc., provides enterprise-grade protection against all known and unknown cyber threats, gives total visibility into the strength of organisations’ people, process and technology controls, and benchmarks cyber resilience improvements to satisfy external auditors. The service is aided by a UK-based Security Operations Centre, ethical hackers and a lawyer-led team of data protection experts.

“We are delighted to achieve the new ISO 27001 accreditation with flying colours, testament to the efforts and expertise of our team,” said Pete Bowers, COO at NormCyber. “Amidst the continued proliferation of information security threats, certifications such as ISO 27001:2022 give organisations a goal to work towards and help foster trust with customers, employees and partners. Securing this latest version of the ISO 27001 standard and becoming an Official Partner of BAB reinforces our commitment to leading by example in our industry.”

About NormCyber
Established in 2015, NormCyber is a company on a mission to provide mid-sized organisations with complete visibility and total control over cyber risk, without the hassle of managing it themselves. Its client list includes businesses in the finance, banking and insurance, logistics and supply chain, and retail and consumer goods industries, amongst others.

With a customer retention rate of over 98 percent, NormCyber offers a true eyes-on-screen 24x7x365 UK-based Security Operations Centre. It also adheres to the highest information security standards including Cyber Essentials Plus, ISO 27001, and is both CREST-certified and PCI-DSS accredited.

About British Assessment Bureau
British Assessment Bureau (BAB) offers internationally-recognised, award-winning certification for its clients. Its UKAS-accredited ISO certificates all come with the coveted ‘Crown & Tick’ mark, underlining the security that only comes from Government-backed certification. You can therefore be confident that BAB’s accredited certificates will be recognised worldwide.

Ready to tackle cyber security?

Request a meeting with a norm. expert to find out how our analysts keep you safe while you focus on what you do best: