NMBS has secured ISO 27001: 2022 certification, the international standard for managing information security.
Building on its existing Cyber Essentials Plus certification, this compliance takes NMBS’s approach a step further by focusing on how the business implements, controls and reviews information security, cybersecurity and privacy protection across all areas.
It includes the creation and ongoing development of a full Information Security Management System (ISMS), designed to safeguard member and supplier data at every touchpoint.
This achievement is designed to reinforce NMBS’s position as a trusted and secure partner for the independent merchant and supplier community, particularly at a time when data threats and digital risks are on the rise, especially for SMEs.
Jamie Freer, Head of IT at NMBS, explained: “Getting ISO 27001 certified isn’t just a badge. It means we’ve put every part of our data handling and IT systems under the microscope. We’re now operating with a higher level of visibility and discipline across everything, from how we store supplier records to the way we manage user access and respond to threats. It’s been a deep dive into how we operate, and it’s made us more resilient for the future.”
Kevin Williams, CEO of NMBS, added: “Trust is absolutely vital in today’s digital world, especially when we’re handling billions of pounds of trade and huge volumes of confidential information. This certification shows our members and suppliers that we take their data safety very seriously and we’re committed to doing things properly. It’s a big step forward in our cybersecurity journey and one that gives our stakeholders even more confidence in how we operate.”
