Tailored, human-centered security that speaks your language

Security shouldn’t be complicated. Focusing on people-first solutions, clear communication, and practical advice gives your teams the knowledge they need to keep your organisation secure.

The approach to internal audits is particularly good. Instead of one big audit that we used to see, they have broken down the internal audit into areas of the business and tool controls, clauses applicable and audited them separately – so about 8 audits done which covers everything well for different business areas. Very nice approach.

ISO 27001 external auditor

Mel and Kit were invaluable in ensuring that we passed the audit and received their ISO 27001 certification at the first time of asking. They clearly explained the whole process, with timelines to ensure that we could plan time and budgets accordingly. They provided detailed advice at every stage, were hands on when needed, but ensured that we transitioned to self sufficiency through the process so there was no long term dependency created.

ISO 27001 client

As a result of their thoroughness and in depth knowledge of all things ISO, not only did we receive the certification, but more importantly, genuinely improved our information security, processes and procedures, bringing long term value to the business. They also ran the internal audit, with even the external auditors commenting on how thorough and valuable it was. They were a pleasure to work with and I would not hesitate to recommend their services.

Dubit Limited

  • Leave No Trace: Why digital footprints matter

    If you spend any time in the countryside, you’ll likely be familiar with the principle of “leave no trace”.  At its heart, this sets out the framework for ensuring that your presence does not cause a problem for others, and if you’re stealth camping it ensures you’re able to go undetected. In the digital landscape,…

    Read full article >

  • Beyond Compliance: How Training Drives Business Success

    It’s a shame that a training policy and personal development plan aren’t standard practices across all businesses. For various reasons, many organisations do not put it at the top of the agenda. However, here’s why they should. The Cost to Businesses Training doesn’t always have to mean expensive courses in external venues. Employees can acquire…

    Read full article >

  • CAF and DSPT

    DSPT submission I know we are only in January, but before you know it we will be seeing new born lambs in fields, daffodils sprouting and leaves reappearing on trees. Oh, and then there’s the Data Security Protection Toolkit (DSPT) submission. To maintain compliance organisations are required to submit before 30th June each year. Changes…

    Read full article >