Frequently Asked Questions

Yes, Cipher Knights is headquartered in Leicester, United Kingdom. Our Security Operations Center (SOC) is UK-based and operates 24/7/365 from our facilities. We serve clients across the UK, Europe, and globally, with all data processing conducted in compliance with UK GDPR regulations.

Cipher Knights holds the following certifications and accreditations:

• CREST – Certified penetration testing and security services
• ISO 27001 – Information Security Management System certification
• Cyber Essentials Plus – UK Government-backed cybersecurity certification
• NCSC Assured Service Provider – National Cyber Security Centre recognised
• Our team members hold individual certifications including CISSP, CEH, GIAC, OSCP, and CISM

We serve organisations across multiple industries including healthcare (NHS suppliers), financial services, retail and e-commerce, legal services, manufacturing, education, government, and technology. Our solutions are tailored to meet the specific regulatory requirements of each sector, including GDPR, PCI DSS, HIPAA, and FCA compliance.

Yes, our Security Operations Center (SOC) operates 24 hours a day, 7 days a week, 365 days a year. We maintain a 15-minute SLA for critical security alerts. Our IT support helpdesk also provides round-the-clock assistance for managed service clients.

Our SOC team responds to critical security alerts within 15 minutes. For emergency incident response, we can have a forensic investigator on-site or working remotely within 4 hours (depending on SLA level). Our rapid response capability is backed by our 24/7 UK-based operations centre.

Our pricing varies based on the scope and complexity of the engagement. We offer flexible pricing models including project-based, hourly rates, and monthly retainers. We provide transparent, no-obligation quotes after understanding your specific requirements. Book a free consultation to receive a tailored proposal.

Yes, we offer a complimentary initial cybersecurity health check for new clients. This provides a high-level assessment of your current security posture and identifies key areas for improvement. Schedule your free assessment today.

Payment terms are typically 30 days from invoice date for approved clients. For project-based engagements, we may require a deposit with the balance upon completion. Monthly retainer clients are invoiced at the beginning of each month. We accept bank transfers and major corporate payment methods.

For managed services such as SOC monitoring and IT support, we typically work on 12-month contracts with the option for longer terms at discounted rates. Project-based engagements like penetration testing have no minimum commitment. We're happy to discuss flexible arrangements that work for your organisation.

Yes, Cipher Knights is ISO 27001 certified for Information Security Management. This certification demonstrates our commitment to maintaining the highest standards of information security across all our operations and client engagements.

Absolutely. We provide GDPR compliance assessments, gap analysis, and remediation support. Our services help you identify areas of non-compliance, implement necessary controls, and maintain ongoing compliance. We also assist with Data Protection Impact Assessments (DPIAs), data mapping, and ICO registration requirements.

We support all major compliance frameworks including:

• GDPR (UK and EU)
• ISO 27001 / ISO 27002
• PCI DSS (Payment Card Industry)
• HIPAA (Healthcare data protection)
• SOC 2 Type II
• NIST Cybersecurity Framework
• CIS Controls
• Cyber Essentials / Cyber Essentials Plus
• FCA regulatory requirements

All sensitive data is handled in strict accordance with our ISO 27001-certified policies. We employ encryption at rest and in transit, strict access controls, data minimisation principles, and regular security audits. Data is processed within the UK and EEA, and we maintain comprehensive data processing agreements with all clients.