Norbroch provides expertise when security matters

Does your start-up or growing business need security leadership but isn't ready to hire a full-time CISO? An on-demand Virtual Chief Information Security Officer from Norbroch can help shape your strategy as well as guiding you on day-to-day issues.

AI systems come with all the security challenges that apply to every computer system and a lot more besides. We can help you use this powerful technology securely.

Designing your new software product or migrating your internal systems towards a zero-trust architecture? We can help you build in security at the top level.

Our UK-based staff can build what you need or help your in-house team to get the job done.

We believe that software quality and security go hand-in-hand. Our team is comfortable in a range of programming languages including C, C#, JavaScript, PHP, Python and SQL though our talent really shines in declarative, strongly typed, functional languages such as Elm and Haskell.

Not sure whether your organisation is doing enough about its security risks? We can help you understand your risks, decide how to reduce them and measure how effectively what you have chosen is working.

We favour the NIST Cybersecurity Framework as a way to structure your thinking.

Is your organisation a target for state-sponsored or corporate espionage? Our team has experience in countering cyber, eavesdropping and insider attacks that are designed to go unnoticed.

We can help you understand the threat and defend against it.

The nature of your organisation may make it a target for terrorist groups or you might just be in the wrong place at the wrong time. Most attacks involve reconnaissance and planning. We can help you improve your physical security to deter terrorists and plan what your staff will do should the worst happen.

Marauding Terrorist Attack (MTA) is a form of terrorist attack that requires little in the way of resources but can be devastating. We helped the UK government write its guidance and we can help your organisation to deter would-be attackers, planning your organisation’s response and train your staff to be ready should the worst happen.

Educating your board and your staff is important in any security strategy. We can prepare and deliver training tailored to meet your needs.

About to bet your business on a third-party tool? We can help you see through the marketing hype and evaluate whether it's going to work for you.

Have you just won a contract and need to prove compliance with a security standard like ISO 27001? We can help you form your security policies, procedures and practices as well as audit any system you already have in place.

We’re also experienced in writing standards should you be putting together one of your own.

Are you filming your latest spy or crime thriller? Your audience need to believe your story to become absorbed in it.

We can help make hacking, lock-picking, phone tracking and terrorist attacks feel convincing.

We have a track record of writing clear and concise documents for technical and non-technical audiences.

We are fortunate that clients trust us with interesting and esoteric projects. If you have an off-the-wall requirement, we'll be straight with you about whether we are best placed to help.