Verify Our SOC Before You Sign

This is our real, operational Security Operations Centre where 24/7 monitoring actually happens, not a demo room or marketing showroom. You will see live SIEM dashboards with real alerts from client environments (anonymised), analysts actively triaging incidents and running threat hunting queries, shift handover briefings happening in real-time, and genuine incident response playbooks being executed. We do not stage or simulate operations for tours. Many visitors bring technical questions to test our analysts' knowledge and validate that we are not just showing presentation slides. The SOC operates independently of tours and you are observing actual security operations.

Several verification methods prove this is the operational SOC. For existing clients, we can show your specific environment in our SIEM with your company name visible (with your permission). You can trigger a test alert during your visit, such as a failed login attempt, and watch it appear in our SIEM in real-time. We introduce you to the specific analysts assigned to your account who can discuss previous incidents or alerts from your environment. Our ISO 27001 and CREST certifications require that we maintain operations at the declared facility in Newcastle, independently audited on an annual cycle. Some clients request annual facility audits as part of their supplier assurance programme.

If your supplier assurance programme requires documented evidence of a facility visit, we provide a signed visit record confirming the date, attendees, and controls observed. This record can be filed as evidence of supplier due diligence in ISO 27001 surveillance audits, FCA outsourcing reviews, and internal third-party risk assessments. You may also photograph our accreditation certificates and request copies of our ISO 27001 certificate of compliance and CREST SOC accreditation certificate. For government and regulated sector visitors, we can provide a structured tour agenda mapped to ISO 27001 Annex A physical security controls.

A physical visit is the only mechanism that allows you to independently verify UK data residency, physical access controls, shift staffing levels, and on-site infrastructure. Virtual tours via video call are available for clients unable to travel to Newcastle and include live screen sharing of our SIEM and EDR tools, video walkthrough of the analyst floor, and Q&A sessions. However, virtual tours cannot verify physical infrastructure or replace in-person facility audits for compliance purposes. For high-assurance clients in finance, government, and healthcare, we strongly recommend in-person visits.

We operate three eight-hour shifts with a minimum of two analysts on-site during every shift, including nights and weekends. During a daytime visit you will see shift schedules displayed in the SOC, overnight incident logs, and staffing boards that evidence continuous operation. If you need to observe a shift handover directly, visits can be timed to straddle a shift change so you observe the briefing process. For clients requiring verification of night-shift or weekend operations, out-of-hours visits can be arranged with additional coordination. The visit itself constitutes the evidence your insurer or auditor requires.

Our primary Security Operations Centre is located in Newcastle upon Tyne, UK. This is a physical facility with 24/7 staffing, access controls, and ISO 27001 certified operations. All data processed remains in the UK for data residency compliance.

SOC tours are available to current clients, prospective customers evaluating our managed SOC or MDR services, and compliance auditors. We welcome CISOs, IT Directors, GRC managers, procurement officers, and technical teams who want to understand our operations before engaging our services. The visit is available free of charge. Response within one business day. No sales presentation required.

Our CREST SOC accreditation is independently audited on an annual cycle and can be verified on the CREST public register at crest-approved.org. CREST certification scope covers our Security Operations Centre operations including threat detection, incident response, and 24/7 monitoring services. For government and FCA-regulated procurement, our accreditation status can be confirmed directly with CREST. We are also listed on G-Cloud and the Crown Commercial Service for public sector procurement.

Typical SOC tours last 60 to 90 minutes. This includes facility walkthrough, analyst introductions, technology demonstrations, Q&A session, and documentation review of ISO 27001 and CREST accreditation materials. For structured supplier assurance visits with a formal agenda, allow up to two hours.