Certification you can actually trust.
As an IASME-accredited Certification Body, we assess and issue Cyber Essentials and IASME certificates in-house -- faster, more rigorous, and with real support throughout.
Cyber Essentials
Cyber Essentials is a UK government-backed certification scheme that helps organisations protect themselves against the most common cyber threats. It covers five key technical controls: firewalls, secure configuration, user access control, malware protection, and patch management.
As an IASME-accredited Certification Body, we assess and issue Cyber Essentials certificates in-house -- no third-party involvement, faster turnaround, and direct support throughout the process.
Cyber Essentials Plus
Cyber Essentials Plus is the higher-level certification that includes hands-on technical verification. Unlike the self-assessed standard, CE Plus requires our assessors to test your systems directly -- scanning for vulnerabilities, testing configurations, and running phishing simulations.
Achieving CE Plus demonstrates a robust, independently verified security baseline. It's increasingly required by central government contracts and many supply chains. We conduct the technical assessment ourselves from our Norwich operations centre.
IASME Cyber Assurance
IASME Cyber Assurance is a comprehensive governance standard developed specifically for SMEs. It covers Cyber Essentials plus additional domains including GDPR compliance, risk management, incident response, and business continuity.
For organisations that need to demonstrate a mature information security posture without the complexity of ISO 27001, IASME Cyber Assurance provides a practical, cost-effective alternative -- with real business value.
Assessment & Auditing
Before pursuing formal certification, many organisations benefit from an independent security assessment to understand their current posture and identify gaps. Our assessors provide honest, actionable findings -- not a sales pitch.
We conduct assessments across technical controls, policies, and processes -- giving you a clear picture of where you stand and a prioritised plan for improvement.
Regulatory Alignment
Regulatory pressure on cyber security is growing across every sector. From DORA in financial services to NIS2 and the Network and Information Systems Regulations, understanding what applies to your organisation and how to comply is increasingly complex.
Our advisors map your current controls against relevant regulatory frameworks, identify compliance gaps, and develop practical roadmaps to achieve and maintain compliance.
NHS Digital Toolkit
The NHS Data Security and Protection Toolkit (DSPT) is mandatory for organisations that handle NHS patient data. Meeting the standard requires evidence across 10 data security standards, covering people, processes, and technology.
We support NHS suppliers, GP practices, and care providers through the DSPT submission process -- from initial gap assessment to evidence collection and final submission. Our experience with healthcare IT means we understand the specific challenges you face.
Quality Principles
Our assurance services are built on the IASME Quality Principles -- a framework that ensures consistency, fairness, and rigour across every assessment we conduct. As an accredited certification body, we are subject to regular audits by IASME to maintain our standards.
When you receive a certificate from Osiris, it means something. We don't rubber-stamp applications -- we guide organisations to genuinely improve their security posture, then certify the result.