Our Accreditation Standards

Why we are publishing our standards

We are committed to raising the standards of the cyber security industry and building trust between service providers and their clients. By publishing our accreditation standards, we aim to increase transparency for organisations seeking accreditation and provide clear insight into the assurance activities we conduct.

This transparency helps organisations better understand the requirements and processes involved in achieving accreditation, enabling them to prepare effectively. For buyers of cyber security services, it offers valuable information about how providers are assessed, increasing their confidence in selecting accredited organisations.

This initiative supports our mission to set global standards, promote consistent quality in cyber security services, and strengthen trust across the industry.

Benefits of the standards

Our accreditation standards directly address challenges in the cyber security industry by: 

• Fostering international collaboration: bringing together global expertise to create excellence in cyber security practices and enhance alignment worldwide.
• Increasing transparency and building capacity: offering publicly available best practices to support cyber security providers across all maturity levels.
• Setting a benchmark of excellence: establishing our accreditations as a global reference point for high-quality cyber security services.

What does this mean for applicants?

Companies currently applying for accreditation and companies beginning their applications before April 2025: 

• Are assessed based on the existing standards specified in the application forms, not these newly published standards.  
• Will be required to meet any outstanding evidential requirements identified by the updated standards through their annual re-accreditation by 2027. 

Companies applying for accreditation after April 2025: 

• Will be assessed based on the newly published standards. 
• Will meet the expanded evidential requirements upon being approved as a Member. 

What does this mean for current Members?

For existing accredited members, once these new standards are adopted, they will be expected to address any outstanding requirements identified by the updated standards over a two year period. 

From April 2025:  

• During their annual re-accreditation, members will be required to contribute additional details regarding organisational information should any be outstanding.

From April 2026: 

• During their annual re-accreditation, members will be required to meet any outstanding evidential requirements identified by the updated standards.

Download the standards

To download our standards you will need to complete a short form and once completed, the standards will be emailed to you. Click the button below to get started. Or Contact us today.