Case Study: Ofgem operator of essential services achieves NIS compliance with NCC Group

Helping Achieve NIS Compliance for an Operator of Essential Services

NCC Group helped Ofgem, the UK energy regulator, support an Operator of Essential Services facing an anticipated inspection and the need to demonstrate compliance with the NIS Regulations. The customer needed an independent view of its cyber security maturity and evidence that its self-assessed position aligned with the Cyber Assessment Framework (CAF) baseline commitment.

NCC Group delivered a series of pragmatic security assessments across the client’s systems and networks, including review of more than 400 pieces of evidence, over 30 workgroups, and multiple site visits. The result was a comprehensive report with ratings for each CAF requirement, remediation recommendations, and the evidence needed to prove compliance, alongside an executive summary highlighting current maturity, gaps, strengths, and priority actions ahead of inspection.

Ofgem