Our Certifications

ISO 27001:2013 is the global best practice standard for information security. Gaining compliance with or certification to ISO 27001 proves that your organisation takes the confidentiality, integrity and availability of its information seriously. Sapphire is ISO27001 certified for our UK HQ to include all staff, policies and procedures. We were one of the first organisations in the UK to be certified to the ISO 27001 standard and have maintained that accreditation since 2005.  Our advice to clients working on ISO 27001 is based on our extensive experience through operating this standard in our own organisation.

Sapphire is certified to Cyber Essentials Plus (CE+). Cyber Essentials was developed as part of the UK’s National Cyber Security Programme and is supported by both government and industry to give organisations the guidelines needed to protect themselves against cyber-attacks. Sapphire has been delivering the very best cyber security services and solutions for over 22 years. Our expertise covers all aspects of cyber security; people, policies and technical controls. We are one of only a small number of organisations in the UK who are qualified to assess and certify businesses against both Cyber Essentials and Cyber Essentials Plus schemes.

The CHECK scheme enables National Cyber Security Centre (NCSC) approved companies to analyse the systems or networks you rely on to carry out your business securely and effectively by conducting a number of tests designed to identify any weaknesses utilising publicly known vulnerabilities and common configuration faults. Companies belonging to CHECK are measured against high standards set by NCSC. Therefore, HMG and CNI customers can be assured that they will receive a high-quality service if the work is carried out under the Terms and Conditions of CHECK. Sapphire has been one of the UK’s leading providers of data assurance and testing services since 1996 and members of CESG CHECK since 2003. Our testing team comprises of CHECK Team Leaders, CHECK Team members and Tiger scheme qualified professionals with Senior Security Testers.

CREST provides organisations wishing to buy penetration testing services, threat intelligence or incident response services with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers. Sapphire is an approved member of CREST for the delivery of penetration testing services. The strength and effectiveness of our testing services lie with the expert conducting the test and the quality of the report generated as a result. We pride ourselves on the high quality of our reports which provide a thorough vulnerability analysis, detailed evidence of the associated risks and remediation advice.

The Trusted Partners Scheme was launched by the Scottish Business Resilience Centre (SBRC)and is endorsed by Police Scotland and consists of those independent certifying companies based in Scotland who have been accredited nationally to certify for Cyber Essentials as a way to support businesses in reaching a basic standard of cyber security. Sapphire is a member of the Trusted Partners Scheme, a group of companies that have passed the advanced status of being Cyber Essential Certifying Bodies.