About Us

How did we get here?

Our Story: A Veteran Owned Business

Stuart Mckean is a former British Army Lynx helicopter pilot with an accomplished service career spanning 23 years.

Following his own experiences, both as an Infantry Soldier and as an Aviator, using his own equipment to do his job(s) more effectively, Stuart brought new insights to bear on the challenges of cyber security from an end-user perceptive.

In 2012, Stuart founded Nine23, a leading UK cyber security company, in his home office with a commitment to delivering premiere, secure enterprise IT services for clients. Stuart believes that effectively enabling the end-user should be put first in any solution after experiencing the problem many employees face in using todays IT equipment to do their jobs more effectively and securely.

Driven by this ethos, Stuart has successfully built and led Nine23’s growth, ensuring that both technology and investment is optimised for the “end user” experience.

Values

We always put our clients first. We provide exceptional client services and deliver true end-to-end value to the client.
We’re passionate about how we enable the end user to use technology, securely.
We will always conduct our business with the utmost integrity, regardless of the outcome.

Mission

Our mission is to deliver complete cyber secure solutions that support the operational end user in governed and regulated markets leveraging our considerable expertise in cyber security.

Vision

To stand out as a leading Cyber Security Solutions company and trusted partner within global regulated and compliance industries who deliver certifiable solutions with outstanding customer services.

How We Work

Our operating model focuses on the end-user journey but only rigorous attention to back-end operations and processes can ensure that these journeys are seamless, fit-for-purpose and secure.

Define: Your Problems

During the define stage our cyber security experts will work with you to discover, clarify and define your goals.

The discovery phase will help us to understand your current capabilities and define your problems or desired changes. We will create a report which will specify the essential capabilities, end-user requirements and outline the options which will work for your organisation. We will develop an agreed roadmap for your digital transformation.

We will deliver the correct solution by working with you to enable your end-users and help you understand what success will look like from the start of the engagement.

Find out how Nine23 added value, enabled remote working through early engagement with the Financial Conduct Authority (FCA).

Build: Your Solution

We can design, implement and build complete cyber security services and solutions that will exceed your end-user requirements.

If appropriate, we will recommend using our Nine23 owned and managed, secure infrastructure and scalable modular UK Sovereign private cloud, Platform FLEX. Whilst we are a fully agile cyber security company, we use DevOps (integrated development and operations) to deliver services we are continually improving for the end-users. During the build phase we produce a project plan with clear deliverables, using the most appropriate methodology for you.

By the end of this phase we will have conducted user testing to ensure the products and/or services are fit for the end-user.

Manage: Your Service

Delivering a managed cyber security service at speed and scale whilst aligning the service to the end-user journey is the final element of our operating model.

We manage and migrate cyber risks and work within your organisation to deliver the cyber security service you require. We will provide you with a well-defined Service Level Agreement (SLA) so there is never any misunderstanding about who is responsible for each part of the product or service.

We operate in an agile way and look to add value at every step with a continuous improvement mindset.

how we work and our operating model, define, build and manage

Enable: Your End-User

Through our solutions, we provide cyber security services that are tailored to your needs as well as your customers.

Enabling your end-user to engage confidently with IT is critical to the value you can derive from the technology. This goal drives Nine23’s development process and operating model; from initial discovery and recommendations through to ongoing support and management. Achieving the goal enhances your teams capabilities and is the heart of all we do.

Our Certifications and Accreditations

Nine23’s certifications and accreditations show our continuous commitment to industry compliance and regulations.

Security Clearance incl. Non-Police Personnel Vetting (NPPV) Level 3

Security Clearance (SC) is a status granted to individuals allowing them access to classified information (state or organisational secrets) or to restricted areas, after completion of a thorough background check.

All Nine23 operations staff have Security Clearance.

ISO 9001:2015 Quality Management system

ISO 9001:2015 Quality Management system is the international standard that specifies requirements for a quality management system (QMS). Organisations use the standard to demonstrate their ability to consistently provide products and services that meet customer and regulatory requirements.

ISO 9001 compliance is reviewed by an external auditor on an annual basis.

Health and Social Care Network (HSCN)

ISO/IEC 20000-1:2018 Service Management

ISO/IEC 20000-1:2018 Service Management is the global standard that describes the requirements for an information technology service management (ITSM) system to ensure that their ITSM process are aligned both with the needs of the business and international best practice.

ISO 20000 helps organisations benchmark how they deliver managed services, measure service levels and assess their performance.

Cyber Essentials Plus (CE+)

Cyber Essentials Plus (CE+) is a UK Government-backed, industry-supported advanced level certification scheme introduced in the UK by the National Cyber Security Centre to help organisations demonstrate operational security against common cyber-attacks. The Cyber Essentials scheme identifies some fundamental technical security controls that an organisation needs to have in place to help defend against Internet-borne threats.

Public Services Network (PSN) Code of Service (CoS)

Nine23 has an established Public Services Network (PSN) Code of Service (CoS) compliance certificate. This enables us to provide services or applications available over the PSN to customers who need it and also publish services for others if required.

Public Sector information carried across the PSN is rated at OFFICIAL under the Government Security Classification Policy (GSC) for which we can design, build and support solutions.

ISO/14001:2015 Environmental Management System

ISO/14001:2015 Environmental Management System is an internationally agreed standard that sets out the requirements for an environmental management system. It helps organizations improve their environmental performance through more efficient use of resources and reduction of waste, gaining a competitive advantage and the trust of stakeholders.

Nine23 are compliant with ISO 14001.

ISO/IEC 27001:2013 Information Security Management System

ISO/IEC 27001:2013 Information Security Management System is the international standard that provides the specification for an information security management system (ISMS). ISO 27001 emphasises the importance of risk management, a formal, top management-driven process which provides the basis for a set of controls that help manage information’s security risks.
By implementing ISO 27001, Nine23 is able to secure information in all its forms, increase resilience to cyber-attacks, adapt to evolving security threats and reduce the costs associated with information security.

ISO 27001 compliance is reviewed by an external auditor on an annual basis.

“Your staff are friendly and funny, but most importantly, are highly competent, forward-thinking, go the extra mile and are constantly looking for ways to improve and gives us the service we require.”

Senior Leadership Team

Stuart McKean

CEO and Founder

Michael Morgan

Chief Financial Officer (CFO)

Julie Gordon

Chief Operating Officer (COO)

Stephen Jewell

Chief Revenue Officer (CRO)

Our Advisors

James Illingworth OBE

Chairman of the Board of Directors

Maggie Titmuss MBE

Board of Directors Advisor

Andy Cash

Senior Leadership Team Advisor

Collaboration Tools

Nine23 are registered and approved by the following collaboration tools and platforms to meet your compliance needs.

Our History

Scroll through the years of our highlights.

2023

Hosted three Nine23 events
Launched the Nine23 Advisory Board
Hired 7 new employees
Won 6 new contracts
Continue to provide an excellent service

2022

Achieved ISO 14001
Launched a QuantumCloud service on G-Cloud 13
Signed strategic agreements with Arqit, Highside, Appgate
Signed a strategic 10 year agreement to support UK Law Enforcement
Signed up one of the Big 4 clients

2021

Celebrated our 10 year anniversary!
Won Houses of Parliament Restoration and Renewal Contract

2020

Achieved ISO/IEC 20000-1 the international standard that describes best practices for IT Service Management (ITSM)
Competed and selected to deliver the Food Standards Agency (FSA) a PSN gateway service.

2019

Launched Secure Bring Your Own Device (BYOD) app “FLEXContainer” at Cyber UK
Achieved the highly recognized information security standard ISO 27001

2018

2016

Achieved full compliance to operate on the UK Public Services Network (PSN).
Achieved and granted Public Services Network (PSN) Code of Service to provide PSN Gateway services.

2015

2013

Competed for and selected to deliver the first RAF use of secure mobile tablets in aircraft.
Achieved ISO 9001 – Quality Management System
Set up office in Southampton Science Park
Competed for and selected to deliver the National UK Policing project – Digital Media Investigator (DMI) with the Home Office and The College of Policing

2012

Became a limited company

2011

Set up Nine23 in Stuart’s home office

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.

Cookie	Duration	Description
VISITOR_INFO1_LIVE	6 months	YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
VISITOR_PRIVACY_METADATA	6 months	YouTube sets this cookie to store the user's cookie consent state for the current domain.
YSC	session	Youtube sets this cookie to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.