Case study · Telecoms infrastructure

An ISMS built to win public sector work

CyPro delivered FreshWave's ISO 27001 alongside Cyber Essentials Plus, with a management system the business could keep passing.

Client

FreshWave

FreshWave logo

Outcome

Public sector wins on the back of ISO 27001 and Cyber Essentials Plus

The starting point

FreshWave’s growth strategy pointed at public sector procurement, where two assurances dominate tender checklists: ISO 27001 and Cyber Essentials Plus. For a connectivity infrastructure company, a certificate that did not reflect real operations would be worse than none, because surveillance audits and renewal cycles expose the gap in front of the very buyers it was meant to win.

The approach

A single senior CyPro practitioner carried the programme. One gap assessment covered both standards, the ISMS was designed around FreshWave’s genuine ways of working rather than a purchased template, and the team rehearsed the questions certification auditors actually ask. Where remediation needed deep technical hands, engineers and penetration testers from CyPro’s wider bench stepped in without handover friction.

The outcome

Both assessments passed, and the commercial return arrived quickly: new public sector contracts cite the certifications directly. Underneath the certificates sit practices the business sustains as routine, which is why each surveillance audit since has confirmed the system rather than challenged it.

"Their new ISO 27001 and Cyber Essentials Plus certifications won them more public sector work."
Tom Bennett , CTO, FreshWave
3D rocket illustration for booking a free ISO 27001 scoping call

Take the first step

Get to ISO 27001 without the guesswork

Book a free 45 minute scoping call: where your ISMS stands today, what the UKAS audit will demand, and one fixed fee for getting there. No obligation, no hard sell.