Home
>
Resources
>
Case Studies
Resources

Case Studies

Over the last 16 years, URM has worked with organisations of all sizes and from a wide range of market sectors in helping them to achieve and maintain certification with international standards, such as ISO 27001 (information security), ISO 22301 (business continuity), Cyber Essentials and Cyber Essentials Plus, preparing for a SOC 2 audit as well as complying with standards such as the Payment Card Industry Data Security Standard (PCI DSS) and complying with regulations such as the GDPR.

Here we provide a number of case studies from a cross-section of those organisations. In each case study we examine business drivers, challenges, key success criteria and benefits derived. Cumulatively, they provide some invaluable lessons and pointers for those organisations embarking on their certification journeys.

ISO 27001, ISO 22301, ISO 20000 and PCI DSS consultancy and product-related case studies

A&O

ISO 27001 Certification Case Study

Audatex

ISO 27001 and BS 25999 Dual Certification Case Study

Bevan Brittan

ISO 27001 Certification Case Study

BLM

ISO 27001 Certification Case Study

Brookson

ISO 27001 Certification Case Study

Century Mail

PCI DSS Compliance Case Study

CES

ISO 27001 Certification Case Study

Havas people

ISO 27001 and ISO 9001 Dual Certification Case Study

james hay partnership

ISO 27001 Certification Case Study

London Fire Brigade

Abriska 22301 Case Study

Licence Check

ISO 27001 Certification Case Study

Marston

ISO 27001 Certification Case Study

Scottish Friendly

ISO 27001 and ISO 22301 Dual Certification Case Study

Searchlight security

SOC 2 Type 2
Case Study

Sightsavers

Cyber Essentials Certifiation Case Study

Swiss Post

ISO 27001 Certification Case Study

Techgate

ISO 27001 Certification Case Study

Tegen

ISO 20000 Certification Case Study

UK Mail

ISO 27001 Certification Case Study

Verasseti

ISO 27001 Certification Case Study

Woods Group

PCI DSS and GC RTS Compliance Case Study
We will ensure you never become a ‘slave to the Standard’ and your ISMS is something which can easily be maintained and improved.
Find out more
How URM can help?
Cyber Security
Get practical guidance on preventing common cyber-attacks

Get practical guidance on how to prepare for and achieve Cyber Essentials and Cyber Essentials Plus certification, and protect your organisation against these attacks.

Read more
Other Standards
Are you looking to conform to or achieve certification to ISO 13485:2016 ?

URM can assist with all aspects of implementation and maintenance of your medical device quality management system.

Read more
Cyber Security
How robust is your cloud infrastructure security?

URM can deliver cloud pen testing, covering all types of deployments. We can conduct external unauthenticated testing, security configuration reviews, and internal testing if your cloud infrastructure is integrated into on-premise infrastructure.

Read more
"
We have been using Abriska to support us in carrying out the risk assessment that underpins our ISO27001 certification for some years now. It helps us to easily group and organise our assets, identify threats and vulnerabilities and determine justifiable risk scores. It centralises all of our risk assessment documentation and offers a range of useful extracts such as a statement of applicability and risk register that take much of the work out of the risk assessment process and allow us to focus on remediation.
Frontier Economics
Economic Consultancy