Blog
Recent blogs

ISO 27001 Clause 8.1: Effective ISMS operational planning and control
Published on
03
July
2026
TRENDING
URM’s blog explains the requirements of ISO 27001 Clause 8.1 and why it matters, as well as sharing key insights on how to properly implement it in practice.
Read more
Cyber Security
Published on
22/8/2024
Pitfalls to Avoid in your Penetration Testing ProgrammeTRENDING
URM’s blog explores common pen testing mistakes & how to avoid them, and simple improvements you can immediately implement to enhance your security posture.
Other Standards
Published on
16/8/2024
The EU Artificial Intelligence ActTRENDING
URM’s blog breaks down the EU AI Act and discusses its scope, requirements, how it will be enforced, how it may impact the UK & the rest of the world, and more.
Information Security
Published on
8/8/2024
How to Conduct Effective Supplier Information Security Risk ManagementTRENDING
URM’s blog provides a stage-by-stage breakdown of the key steps you will need to take to conduct effective supplier information security risk management.
Cyber Security
Published on
1/8/2024
10 Most Common Vulnerabilities Found in Pen TestsTRENDING
URM’s blog outlines the top 10 most common vulnerabilities we identify when conducting pen tests, the associated risks, and how they can be fixed/avoided.
Quality Standards
Published on
25/7/2024
5 Golden Rules for Implementing ISO 9001TRENDING
URM’s blog offers advice and guidance on how to implement and maintain an ISO 9001-aligned QMS and receive the maximum benefit from your investment.
Data Protection
Published on
18/7/2024
ICO Enforcement Action January – June 2024TRENDING
URM’s blog reviews ICO enforcement activities for the 1st half of 2024, highlighting trends & shifts in how it enforces against data protection breaches.
Cyber Security
Published on
12/7/2024
Access Control, Administrative Accounts and Password-Based Authentication in the Cyber Essentials SAQTRENDING
URM’s blog offers advice on answering questions in the Cyber Essentials SAQ which relate to access control, admin accounts and authentication methods.
Information Security
Published on
10/7/2024
A Guide to the Certificate in Information Security Management Principles (CISMP)TRENDING
URM’s blog discusses everything you need to know about the CISMP, including its benefits, who it’s suited to, the topics the CISMP covers, and more.
Data Protection
Published on
5/7/2024
Oral references now count as processing for GDPR purposes (in the EU at least)TRENDING
URM’s blog explores a recent ECJ ruling which dictates that oral job references are covered by the GDPR
Cyber Security
Published on
27/6/2024
Getting the Most from Your Pen Tests - During and AfterwardsTRENDING
URM’s blog outlines the key steps you can take during and after a penetration test to improve your organisation’s security posture.
If you are looking for reassurance when applying for certification use our Cyber Essentials Application Review Service.
Find out more
how URM CAN HELP?
URM CONSULTING services
Assess Your DORA Compliance Readiness
Unsure whether your ICT risk framework meets DORA standards? Our experts will carry out a detailed gap analysis and provide clear, prioritised steps to help you achieve full compliance.
Read more
URM CONSULTING services
Receive a Bespoke AI Management System
URM tailors ISO 42001 solutions to your unique risks, sector, and culture—ensuring seamless integration into business-as-usual.
Read more
URM CONSULTING services
Does your mobile application need to be pen tested?
URM can conduct penetration tests on mobile apps that are deployed to either Apple IOS or Android devices, typically against the OWASP MASVS, but also under the CREST OVS framework where required.
Read more
"
Very concise webinar giving some interesting thoughts on transition etc. and guidance on preparation for transition.
Webinar 'ISO 27001:2022 – What’s new?'
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.
