What others say about URM
Information Security
The consultant’s efforts in ensuring that our PCI compliance is audited correctly is highly appreciated, as it gives the company an accreditation that we can be proud of and that we can show off to existing and prospective customers as proof of our security posture. A huge thank you to URM for providing such a valuable service.
Open Banking Platform
Information Security
Our URM QSA always consults with the aim of making compliance as straightforward as possible, and pointed us towards a way of significantly minimising and streamlining our assessment scope that neither we nor our previous PCI DSS consultancy provider had considered.
CISO at University of Surrey
Information Security
Whenever we have asked our QSA and account manager whether additional work is required outside of the annual cycle, there has never been a hard sell of any of URM’s services, and instead offer advice based on our compliance requirements and business needs.
CISO at University of Surrey
Information Security
We are immensely grateful to URM for their unwavering support, professionalism, and expertise throughout our ISO 27001 and Cyber Essentials Plus journey. Their guidance and strategic insights have been invaluable. With URM's continued partnership and support, we are confident in our ability to proactively address emerging threats and keep our business secure.
Information Security
URM has played a vital role in helping us and our clients achieve Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. URM's expertise and dedication have been key to the success of this process, and their assistance has enabled us to enhance our cybersecurity posture significantly and provide our clients with the highest level of protection against cyber threats.
Data Protection
We cannot thank URM enough for their help in ensuring our business is GDPR compliant. Both the gap analysis conducted and the in-depth assistance with the ROPA were made much easier and understandable with URM’s help. I would like to give particular thanks to URM's Consultant for providing us with the best guidance and making a famously complex topic comprehensive, and to our Account Manager for helping make sure all our needs were covered.
Cyber Essentials
I am pleased to share my experience with the Cyber Essentials Plus (CE+) Scheme. This certification has been invaluable to Case Pilots in helping us protect ourselves from cyber threats. The comprehensive and user-friendly process provided by URM Consulting gave me a deep understanding of the latest threats, vulnerabilities and best practices in cyber security. The assessors were highly knowledgeable, experienced and able to explain each step of the process clearly and concisely. What I particularly appreciated about the CE+ scheme was its relevance to the real world. The training covered not only the fundamental principles, but also advanced techniques and strategies that are used by professionals to protect their systems and data. Achieving the certification demonstrates to our clients that we are committed to cyber security and that we have the knowledge and skills to protect their data. I highly recommend the Cyber Essentials Plus Scheme to any organisation that is serious about cyber security.
Information Security
It’s one thing having the required technical knowledge, it’s another thing for a consultant to apply that knowledge to the context of our organisation. To use a sporting analogy, we view cyber and information security as a marathon not a sprint. I am not a believer in doing everything all at once. Our approach has been risk based and incremental, remediating our biggest risks first before moving on. I believe this approach is far more sustainable and effective. And URM’s consultants fully understand this and are very pragmatic and tailored in their guidance and advice. They know we are not implementing ISO 27001 purely for the certificate, but more as a framework for continual improvement, and at a pace where new systems and processes can be fully understood and absorbed by our team and be business as usual.
The Owners and Distributors of Quality Brands
Cyber Essentials
Working with the URM team to achieve Cyber Essentials Plus for Cisilion was a seamless and highly professional experience. Their expertise, clear guidance, and proactive approach ensured we met all the necessary security standards with confidence. URM's consultant's in-depth knowledge and support made the entire process smooth and efficient, helping us strengthen our cybersecurity posture. We highly recommend URM for their exceptional service and commitment to excellence!
I really enjoyed the course and thought it was led brilliantly. The trainer was a great tutor and clearly well experienced with a vast knowledge of the subject matter. The administration was also particularly impressive, I have not had such a good experience with this before on other courses I've attended. The information and course materials were shared immediately as and when needed and any questions were responded to with haste. URM seems like a great company, and I would definitely recommend doing a course with them.
Information Security
The course was educational but fun, everyone was engaged, and I believe all who attended would now be able to complete an internal audit. The trainer would be our first choice of a tutor for our next ISO training.
Cyber Security
URM’s in-depth knowledge of cybersecurity best practices and the Cyber Essentials framework helped us strengthen both ours and our client’s security posture while ensuring full compliance. Their consultants were professional, approachable, and incredibly thorough, offering practical advice tailored to the specific needs. The Cyber Essentials Plus assessment was conducted with great efficiency, and URM’s supportive approach meant we felt well-prepared at every stage. Thanks to their expertise, we successfully achieved certification for us and our clients, giving us (and our clients) greater confidence in our cybersecurity resilience.
Cyber Security
URM has guided us through the Cyber Essentials and Cyber Essentials Plus certifications for the past couple of years. The process has always been straightforward and well-structured, providing us with a clear roadmap to enhance our cybersecurity posture. Achieving these certifications has focused our efforts and significantly boosted our confidence in our security measures, reassuring our clients and stakeholders of our commitment to protecting their data. The rigorous assessment for Cyber Essentials Plus gave us an in-depth understanding of our vulnerabilities and how to address them effectively.
Information Security
Our partnership with URM has been outstanding. From supporting us with our own Cyber Essentials certification to assisting our customers with Cyber Essentials, ISO 27001, and virtual CISO services, URM consistently delivers exceptional service. Their expertise, open communication, and ability to allocate the right expert resources for specific requirements makes every project seamless. We highly value their support and look forward to continuing our collaboration.
Abriska 27001
We have been running with the Abriska risk management system for just over a year and are very pleased with how it has facilitated the management of risk within our organisation. It provides a consistent and objective mechanism for identifying and treating risks and for following up and controlling actions put in place to mitigate them. It is easy to use and thus encourages engagement by all users so that risk is managed on a “real time” basis. The system of alerts and reminders ensures that actions are completed in a timely manner. Abriska scores very highly on availability and responsiveness. A very good product with excellent customer support when needed.
We would like to commend the customer service level provided by URM. The assistance and support have been consistently good, and it’s greatly appreciated. The professionalism and promptness with which our Account Manager handles inquiries and issues stands out. Each interaction has been marked by a genuine willingness to help, which has not gone unnoticed. He’s dedicated to providing top-notch service and ensuring customer satisfaction. I look forward to continuing our collaboration and am confident that we will achieve great results together.
Data Protection
The course was very insightful, and I gained a lot of knowledge from taking part. The trainer was extremely knowledgeable and incredibly helpful in answering any questions provided. The course was fun to learn about and I felt the way the information was presented was easy to understand but also generated conversation which meant we were thinking throughout. The final example was a great way of applying the knowledge from the course and a really good example of how tricky it can be but also was very interesting in hearing the other opinions to challenge our own thoughts. A very good course.
Information Security
I thought the training was very good. It was clear and logical. The trainer was very knowledgeable, approachable and friendly, which makes it easy to stop and ask questions or to clarify a point. I was particularly impressed by his explanation of why we need to be mindful of the language we use and what the standard is actually asking for; most of it is common sense, but understanding what it actually means and what is required is key, so that really resonated with me.
Abriska 27001
We were impressed with the implementation and management of the Abriska tool. The service we have received is of a high quality due to the Team’s attention to detail, proactiveness and implementation of enhancement requests from the dev side. The Board is also impressed with the tool and is looking to complete an organisation-wide implementation soon. We will definitely recommend other charity contacts to use the tool, as it is well priced and comes with excellent customer service.
Cyber Security
The feedback on URM’s report was that it was the best document the developer had ever received due to it being so concise and clear. He has saved it on his desktop and suggested that the business should use a similar template for internal docs. This great feedback reflects not only on the URM penetration tester who conducted the test, but also on the senior members of URM’s Cyber Team for all the work they have put in to producing such a brilliant reporting template.
Information Security
The consultant’s efforts in ensuring that our PCI compliance is audited correctly is highly appreciated, as it gives the company an accreditation that we can be proud of and that we can show off to existing and prospective customers as proof of our security posture. A huge thank you to URM for providing such a valuable service.
Open Banking Platform
Information Security
We've been using URM for our PCI DSS assessments for the last 5 years and we are pleased with their service. The assessment is always completed promptly, the price is competitive, and communication is great. We'll keep using them and are happy to recommend URM to anyone.
Information Security
After a bad experience with a previous provider, we looked to URM for QSA support. The URM QSA we have worked with is phenomenal, and considerably better than our previous QSAs. My team enjoy working with him, and find him to be extremely credible and effective.
CISO at University of Surrey
Information Security
URM's diligence during these audits has resulted in the business as a whole pulling together to collectively ensure that we up to par with the requirements. While our working relationship with URM’s consultant is fantastic, we are held to account for every bullet point of every requirement on every audit, which is precisely what we expect.
Open Banking Platform
Information Security
Whenever we have asked our QSA and account manager whether additional work is required outside of the annual cycle, there has never been a hard sell of any of URM’s services, and instead offer advice based on our compliance requirements and business needs.
CISO at University of Surrey
Information Security
Our URM QSA always consults with the aim of making compliance as straightforward as possible, and pointed us towards a way of significantly minimising and streamlining our assessment scope that neither we nor our previous PCI DSS consultancy provider had considered.
CISO at University of Surrey
Information Security
We are immensely grateful to URM for their unwavering support, professionalism, and expertise throughout our ISO 27001 and Cyber Essentials Plus journey. Their guidance and strategic insights have been invaluable. With URM's continued partnership and support, we are confident in our ability to proactively address emerging threats and keep our business secure.
Information Security
URM has played a vital role in helping us and our clients achieve Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. URM's expertise and dedication have been key to the success of this process, and their assistance has enabled us to enhance our cybersecurity posture significantly and provide our clients with the highest level of protection against cyber threats.
Cyber Security
We highly recommend URM to any business looking to achieve Cyber Essentials or Cyber Essentials Plus certification—their expertise and customer service are second to none!
Cyber Security
We regularly work with URM to achieve Cyber Essentials and Cyber Essentials Plus certifications, for us and our clients. We couldn’t be more impressed with their service. From start to finish, their team provided expert guidance, making the entire process seamless and stress-free.
Cyber Security
The guidance and support we’ve received from URM during the process for both certifications have been exceptional, putting us at ease and providing clear and concise explanations and advice to ensure we met all the necessary requirements. We would not hesitate to recommend them.
Information Security
We have been using the services provided by URM for a couple of years now. They have been excellent in providing their expertise on ISO 27001 and SOC 2, which was instrumental in guiding us on our compliance and certification journey. Thanks to their professionalism and knowledge, we continue to obtain certifications smoothly and with confidence.
URM have been very patient with us and it's been an overall good experience. I’m keen to continue using their services next year.
URM have quickly become a trusted partner who we can rely on for expertise. They've provided a great service since the first day we started working with them and their staff are really knowledgeable, friendly and helpful.
Information Security
On our path of growing our business, we have found in URM a very capable and knowledgeable consultancy firm to guide and structure our processes towards SOC 2 compliance. The consultancy by URM played an essential role in building our competences and expanding the compliance framework for our SaaS based propositions.
Information Security
URM have carried out our PCI DSS assessments for nearly 10 years. During that time they have shown expertise and commitment in helping us reach our goals. Last year we decided to go for Cyber Essentials Plus and had no hesitation in getting URM to assess us for that.
Data Protection
The trainer was extremely personable and explained everything in a way that it could be understood. I felt very comfortable to ask any questions big or small as she was very welcoming.
Cyber Security
Our assessor was really helpful – he didn't just tell us what to do but also explained everything to us, which was a real benefit, very happy.
Cyber Security
Thank you to our assessor, our account manager and URM for this support. Without their advice and support, we wouldn’t have achieved this.
I wanted to say thank you to our consultant for all the feedback/information he’s helped with over the years he’s been coming. It’s only been a couple of days a year but it’s been really helpful in understanding the sort of mentality and process we should be working to, I’ve really benefited from the level of thoroughness and care to detail he’s demonstrated
Information Security
We wanted to thank our QSA for his continued assistance with our PCI audit. It was a pleasure to meet and work with him over the course of the audit and we look forward to seeing him again when the next one comes around.
I am very satisfied with the training. It was very practical, and the trainer gave excellent real-life examples. I feel this training will help me a lot in the future.
Our Quality and Regulatory Manager has stated how impressed they are with our auditor’s approach, conduct and output during the recent internal audits.
Information Security
I am pleased to recognise the work of the URM internal auditor we have worked. Throughout all the audits carried out, he has consistently demonstrated professionalism, diligence, and a commitment to excellence in every task undertaken. Thanks to his efforts, we have achieved a very successful first stage ISO 27001:2022 certification audit, with zero findings noted, which has positioned us on track for the second stage audit and for long-term success.
I really appreciate everything URM has done so far; I reached out to several companies for quotes and URM were the most responsive, which makes all the difference when choosing who to work with.
Information Security
We would like to pass on our gratitude to our consultant for all his hard work and advice during our 3-year re-certification and assessment against the new Standard. After seven days of auditing, we have two OFIs that the assessors have put forward from the audits. This pays testament to our URM consultant, his hard work, eye for detail and advice given, both during the audits and during all the works beforehand.
We would like to thank our consultant for his time and patience over the past couple of years. His knowledge and guidance have been invaluable to me and to the Company.
Data Protection
I have never experienced such a smooth, stress-free process in relation to a SAR. The consultants’ service, communication, etc., has been brilliant. It was an absolute pleasure working with them both.
Information Security
Our URM consultant was most helpful. Very constructive with her thoughts. She completely understood the technology we are using to monitor the ISMS, which allowed her to fully appreciate the documentation.
Information Security
Our consultant was very thorough and knowledgeable when delivering the ISO 27001 pre-stage-2 internal audit.
Cyber Security
We have just received the CE+ certificate and notification that we have passed; we wanted to thank our assessor for all his help with this. It is greatly appreciated. I know that our team is very grateful as they were expecting the process to be difficult. Instead of being difficult, URM’s assessor made it a smooth process and we have all learned a lot
Information Security
We’d like to thank our assessor for his usual thorough and fully detailed attention to our system. Our ISMS is being spoken about in much awe and reverence within the wider organisation and I can honestly say that, without his support and wisdom over the last few years, this would not be happening.
Quality Standards
URM’s consultant has successfully guided us through our recent ISO 9001 CAV with zero NCs or OFIs.
The session went down fantastically well and was very much appreciated by the (Global) team.
Cyber Security
Our assessor was brilliant! He was incredibly supportive and knowledgeable and really helped us get through CE+. It was a pleasure working with him.
URM is one of the UK's most trusted training providers in the areas of information security and governance. Check our training program.
Find out more
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.