SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Norm gains three key cyber security accreditations from CREST & NCSC
Tue, 14th Nov 2023

Today, mid-sized businesses' managed security service provider Norm announced their achievement of three significant accreditations from CREST and the NCSC. With the acquisition of CREST accreditation, NCSC CIR Level 2 Assured Service provider status for their cyber security incident response service capabilities, as well as the CREST accreditation for their security operations centre (SOC) services, Norm continues to demonstrate its commitment to helping organisations defend against and recover from ransomware and other financially-driven cyber attacks.

The cyber security firm was assessed against demanding criteria to attain these accreditations, confirming that its methodologies, knowledge, skills and expertise are of the highest standards. Norm is among a select few cyber security specialists that have received the NCSC CIR Level 2 Assured Service Provider status since its introduction in August 2023. This accreditation enables UK based private companies, charities, local authorities, and smaller government departments to easily identify cyber security partners who possess the needed processes, expertise, and skills to defend against and recover from cyber attacks, particularly those financially motivated ones.

In words of CREST President Rowland Johnson, “Congratulations to Norm for gaining both CREST Accreditation and NCSC Cyber Incident Response Level 2 Assured Service Provider Status for its incident response services.” He went on to acknowledge that "This achievement means Norm has been assessed as capable of supporting most organisations with common cyber attacks, such as ransomware, providing demonstrable assurance to buyers of the high quality of the company’s incident response services."

Supplementing their aforementioned achievements, Norm's Fareham-based SOC services also earned the CREST accreditation. The SOC team of the company delivers round-the-clock monitoring, vulnerability and patch management, threat detection, and response, aiming to buttress the cyber resilience of its clients.

Expressing delight over these significant achievements, the COO of Norm, Pete Bowers, said, “We are delighted to achieve these highly prestigious accreditations from CREST and the NCSC.” He added, “Organisations don’t just need confidence that their cyber defences will withstand attacks, they also need to know that – if the worst happens and they are breached – they will be back on their feet as quickly as possible. These accreditations are a huge endorsement of our ability to both defend against and respond to attacks on behalf of our customers.”

Norm’s flagship managed service, smartbloc., provides enterprise-grade security to organisations, ensuring the robustness of their people, processes and technological controls. Complementing its incident response and SOC services are its team of ethical hackers and a crew of lawyer-led data protection specialists, who combine their talents to make Norm's security services even stronger.