Experts in Information
Security

TRUSTED SERVICES
CREST LogoPen Test LogoOVS Mobile LogoOVS Apps LogoCyber Essentials Certification
PCI DSS CertificationBSI CertificationBSI Certification

ISO 27001
Consultancy
and Auditing

Guaranteed ISO 27001 certification
Tailored ISMS implementation
Highly skilled auditors
Find out more

GDPR Consultancy
and Training Specialist

Pragmatic and tailored
approach to GDPR compliance
Find out more

Leading PCI QSA
Company

Pragmatic and tailored
approach to PCI DSS
compliance
Find out more

Trusted and
Accredited
Penetration Testing

Maximising the benefits from your pen testing. Assessment tailored to your organisation’s needs. Free retest of high or critical vulnerabilities.
Find out more

URM makes
Cyber Essentials
certification easy

Achieve Cyber Essentials and Cyber Essentials Plus certification with our team of qualified experts.
Find out more

Team of Experienced
SOC 2 Consultants

If you need to comply, attest, or prepare for
a SOC 2 report (be that Type 1 or Type 2)
URM provides a full range of services.
Find out more
Get a discounted Cyber Essentials certification with URM as part of IASME’s Charity Cyber Essentials Awareness Month 2024
URM is an accredited Assured Service Provider under the NCSC Cyber Advisor scheme. We are able to provide you with practical, cost effective and reliable advice to improve your cyber security and achieve  ‘Cyber Essentials’ and ‘Cyber Essentials Plus’ certifications.

URM Consulting Services (URM)

URM Consulting Services (URM) is dedicated to providing high quality, cost-effective and tailored consultancy and training in the areas of information and cyber security, data protection, business continuity and risk management.

URM's mission, through its consultancy, cyber testing, auditing and training services, along with risk management software (Abriska), is to assist you achieve the levels of information security, data protection and business continuity which are commensurate with the objectives and culture of your organisation, and which also meet international standards, regulations/legislation and recognised best practice.

Having assisted over 400 organisations achieve ISO 27001 certification, URM is ideally placed to help you certify your information security management system against the Standard or transition from the 2013 version of the Standard to the 2022 version.

Find out more

URM's services include conducting data protection impact assessments (DPIAs), developing records of processing activities (ROPAs) and conducting data subject access request (DSAR) redactions.

Find out more

URM’s qualified security assessors (QSAs) pride themselves on their pragmatic approach to both compliance and assessments and will work with you to find the most appropriate and sensible way for you to meet the requirements of the Standard, including v4.0.

Find out more

As an accredited Cyber Advisor (Cyber Essentials) and Certification Body, URM is ideally placed to provide you with reliable and cost effective cyber security advice and help you achieve Cyber Essentials and Cyber Essentials Plus certification.

Find out more

As a CREST-accredited organisation, URM is able to provide penetration testing services against all assets associated with your organisation, location or service, e.g., external and internal networks, cloud environments, web or mobile applications.

Find out more

If you’re looking to understand whether SOC 2 is the right approach for you, what efforts are required to comply or attest, or prepare for a SOC 2 report (be that Type 1 or Type 2), URM can provide you with a full range of services.

Find out more
Our experts are the ones to trust
when it comes to your cyber security
CREST LogoPen Test LogoOVS Mobile LogoOVS Apps Logo
PCI DSS CertificationCyber Essentials CertificationBSI CertificationBSI Certification
WebinarISO 13485: What, Why and How
11:00 am
,
Wednesday
16
October
2024

BSI and URM discuss the importance of ISO 13485 standard to organisations looking to enter or maintain its presence in the marketplace of medical devices.

Read more
USB stick, Padlock, Keys
WebinarCyber Essentials and Cyber Essentials Plus Successful Certification
11:00 am
,
Wednesday
23
October
2024

URM experts will provide you with practical guidance on preparing for and achieving a successful Cyber Essentials and Cyber Essentials Plus certification.

Read more
USB stick, Padlock, Keys
SeminarHow to Achieve ISO 27001 Certification
9:30 am
,
Wednesday
20
November
2024

On 20 November, BSI and URM are collaborating to deliver a free, half-day seminar on how to implement ISO 27001, the International Standard for Information Security Management Systems (ISMS’).

Read more
USB stick, Padlock, Keys

SOC 2 Explained

Chris Heighes
|
Senior Consultant at URM
Published
11
October
2024

URM’s blog answers key questions about SOC 2, including what it is & who it applies to, why it is beneficial, how SOC 2 reports are structured & more.

Read more
Thumbnail of the Blog Illustration
Information Security
Published
4/10/2024
Implementing and Auditing ‘People Controls’ from ISO 27001:2022

URM’s blog explains why ‘people’ warrants its own control theme in ISO 27001 and how to prepare for a people controls audit, offering advice for each control.

Read more
Thumbnail of the Blog Illustration
Data Protection
Published
27/9/2024
Data Protection Considerations for Monitoring Employees

URM’s blog offers key advice and detailed guidance on how to balance your organisation’s needs with GDPR compliance as you perform workplace monitoring.

Read more
Thumbnail of the Blog Illustration
Information Security
Published
20/9/2024
ISO 27002, the Unsung Hero

URM’s blog explains what ISO 27002 is, how it can benefit your organisation, & how you can use it to support your implementation of an ISO 27001-conformant ISMS

Read more
"
Without URM, Havas People would not of achieved its certification goals.
Director, Havas People