eCommerceNews UK - Technology news for digital commerce decision-makers
United Kingdom
575
#
DevOps
#
IoT Security
#
SOCs

Cyber Scheme launches company accreditation programme

Tue, 21st Apr 2026 (Today)
Author image
By Sofiah Nichole Salivio, News Editor

The Cyber Scheme has launched an Accredited Company Programme for organisations that deliver cyber security services. It is aimed at companies of all sizes in the UK market.

The programme assesses organisations on the professional competence of their workforce and links company accreditation to standards set by the UK Cyber Security Council for Chartered Cyber Security Professionals.

Accredited companies will be recognised for verified skills, continuous professional development and service standards. Participants will also be able to access procurement frameworks that require a professionalised cyber workforce.

The accreditation covers specific disciplines rather than providing a single general approval. Companies listed on a planned Accredited Company Register will be recognised in areas including security testing, operational technology, incident response, secure operations, cyber security management, and governance and risk.

The move expands The Cyber Scheme's role beyond individual certification into organisational assessment. The group already assesses and recommends people for professional titles from Associate to Chartered level across several specialisms, and says it accounts for more than half of all registered professionals through its work as a Licenced Body for the UK Cyber Security Council.

Zeshan Sattar, Director of The Cyber Scheme, said the new model is intended to link the standing of a cyber security provider to the credentials of the staff delivering the work. "Our accreditation programme is built on the principle that trustworthy services come from proven professional competence," Sattar said.

"The programme assures a company's services by confirming its workforce capability aligns with the UK Cyber Security Council's Chartered Cyber Security Professional standards."

"Professionalisation doesn't stop with individuals. Skills, standards and continuous development must be embedded within the organisations delivering these services."

Procurement access

For cyber security consultancies and specialist providers, one of the most immediate commercial effects may come through procurement. Accredited companies will gain visibility in regulated frameworks and routes into domestic and international work, while also improving their ability to recruit and retain professionally registered staff.

This emphasis on frameworks reflects a wider shift in the sector, as public and regulated buyers increasingly ask suppliers to show evidence of recognised qualifications and independently verified standards. By focusing on workforce competence, the programme seeks to create a company-level marker that buyers can use alongside individual certifications.

Jordan Glover, Director of JAG Secure, said the structure addresses a long-standing issue in the market. "The Cyber Scheme's Accredited Company Programme is something our industry has genuinely needed. It shifts responsibility beyond the individual, tying a company's credibility directly to the verified competence of the people working within."

"What's great is the specialism-based recognition. Companies are accredited for what they actually deliver, whether that's security testing, incident response, or governance and risk management, rather than receiving a blanket stamp of approval. For a specialist firm like ours, that distinction matters. This is a commitment to quality, transparency and the long-term professionalisation of cyber security."

Industry context

The Cyber Scheme describes itself as an accreditation body for technical cyber security organisations and professionals, with certifications aligned to standards used in government-backed schemes including CHECK, Cyber Essentials Plus and Cyber Advisor. It says its Cyber Scheme Team Member qualification has become a baseline requirement for technical assurance roles in parts of government and industry.

The new company programme builds on that position by applying professional standards at organisational level. Rather than relying solely on the credentials of individual consultants, the model seeks to show whether a business has embedded training, development and recognised skills across the team delivering services.

Supporters argue that this distinction matters in specialist fields, where firms may be known for one area of work but not others. A register that identifies accredited disciplines could allow buyers to distinguish between providers on a narrower basis than broad cyber security branding.

Paul Toye, Managing Director of Cyber Guarded, said that could give clients greater confidence in the services they buy.

"The programme fills a critical gap by linking professional competence with organisational credibility, giving UK businesses confidence that the advice and services they receive come from trusted, independently verified professionals operating within their recognised specialisms."

Sattar said the programme is intended to be more than a symbolic label for participating firms.

"Our Accredited Company Programme isn't just another badge. It's a strategic advantage that builds trust and confidence, raises the bar and strengthens resilience across the sector."

Related stories
Supply chain leaders prioritise sustainability, survey finds
SAP unveils agentic AI tools for manufacturing supply
Exclusive: How Adobe showcases its innovation engine
Adobe adds brand intelligence to GenStudio marketing tools
Adobe launches CX Enterprise to unify AI customer workflows

Top stories

UK reindustrialisation investment set to fall sharply
Retailers urged to clean address data for faster deliveries
IAS expands TikTok ad measurement across four formats
Dext adds payroll to UK payments product for Xero users
Coinbase launches UK crypto-backed USDC loans for users