When a cybersecurity company needs to certify its own information security management system, the choice of partner matters. Outpost24, a European leader in Attack Surface Management, switched certification partners and selected Into Certification for its ISO 27001 recertification. This decision speaks volumes about trust and shared understanding between cybersecurity professionals.
Comprehensive Scope of the Project
Outpost24, a leading global provider of cybersecurity solutions with 25 years of experience, held an existing ISO 27001 certification but decided to switch certification partners for its recertification.
The project’s scope was substantial. It covered information security management for the Outpost24 group’s development, operations, administration, and support, as well as for all subsidiary products and solutions across four locations in three countries: Karlskrona and Stockholm in Sweden, Plymouth in the United Kingdom, and Leuven in Belgium.
“I believe that to truly evolve as a company, you have to challenge yourself and your team. We felt this was the right time to bring in a fresh perspective. Our goal wasn’t just to renew a certificate, but to get deeper, more constructive feedback on how we can continue to improve our security posture,” says Olivia Brännlund, Chief Information Security Officer at Outpost24.
When Cybersecurity Professionals Audit Cybersecurity Professionals
Both Outpost24 and Into Certification, a subsidiary of Into Security, operate in the cybersecurity industry. This shared expertise creates a unique dynamic: the auditor truly understands the environment being assessed. Into Security specialises in advanced cybersecurity and compliance services – the same domain in which Outpost24 serves its own customers.
“When auditing a cybersecurity company, a deep understanding of cybersecurity and all of its aspects is needed. The company’s services focus on security, and cybersecurity professionals know what good security looks like – the same is expected from their auditor. There’s mutual respect when security experts work together. Outpost24 came prepared, asked sharp questions, and challenged us to be at our best,” says Ville Koskinen, COO and Lead Auditor of Into Security.
“Working with Outpost24 meant meeting high standards, which is exactly the kind of challenge we appreciate”, says Niki Klaus, CEO of Into Security.
“We wanted to work with auditors who possess deep technical competence and a real-world understanding of our environment. Having that shared industry background meant the auditors could provide more meaningful insights. It allowed us to move past the basics and get real value out of the process,” says Olivia Brännlund.
The Certification Process and Results
Outpost24 successfully achieved ISO 27001 recertification through Into Certification, covering its international operations across three countries. The recertification confirms that Outpost24’s information security management system (ISMS) continues to meet the rigorous requirements of ISO 27001.
“Our customers place a high value on our commitment to security. They expect us to keep pushing ourselves and stay ahead of emerging threats, so maintaining this high standard is essential to the trust we’ve built with them,” says Olivia Brännlund.
“Into Certification provided a very fair and thorough assessment. Most importantly, we walked away with actionable feedback to help us further mature our program. I would recommend them to any company that wants to be a leader in their field and accelerate their security initiatives,” continues Brännlund.
Into Serving Clients Across Borders
The Outpost24 case demonstrates Into Certification’s capability to support international certification projects. With a scope spanning multiple countries and covering complex technical operations, the project required both deep expertise and smooth cross-border coordination.
“This was a significant undertaking. Since we are deeply rooted in Sweden, with more than a third of our team based there, it was important to find a partner who was a good fit both culturally and geographically. That proximity helped streamline the process across our international offices,” says Brännlund.
“Certification audits to international organizations are a core part of what we do. Our team has the experience and proven processes to run multi-country audits smoothly, no matter where a client’s offices are located,” explains Niki Klaus.
“When the scope is complex, and locations span multiple regions, success comes down to two things: clear, repeatable ways of working and strong communication across stakeholders. That’s precisely what we’ve refined over the years, and it shows in projects like this,” says Klaus.
—
For more information contact:
Ville Koskinen, COO, Lead Auditor, Into Security Oy, +358 40 621 6172, ville.koskinen@intosecurity.fi
Olivia Brännlund, CISO, Outpost24 AB, +46 76 117 46 84, olbr@outpost24.com
About Outpost24
Outpost24 is a leading global provider of cybersecurity solutions, encompassing two specialized divisions to deliver comprehensive exposure and access management. The company helps thousands of organizations worldwide proactively identify, manage, and reduce cyber risk across their entire digital and human attack surface. This is achieved through the combined expertise of Outpost24, the Attack Surface Management division focused on holistic Exposure Management, and Specops, the Identity and Access Management provider specializing in world-class Identity and Password Security solutions. Founded in 2001 and headquartered in Sweden, Outpost24 operates globally with 12 offices worldwide, including in the US, UK, France, Belgium, Spain, and Israel. For more information, visit https://outpost24.com.