KeySigma: Secure Innovation
Get in touch

Secure Innovation

Secure Innovation

SECURE

INNOVATION

Tailored Advice for UK Startups to Help Protect their People, Properties, and keep their Competitive Edge.

Funded

By the UK Government.

Gov.uk

Apply for a funded security review today

* KEYSIGMA will use the information you provide to contact you regarding the SECURE INNOVATION scheme and related consultancy services. You can unsubscribe or update your communication preferences at any time.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Secure Innovation is a Five Eyes Intelligence Partnership campaign delivered in the UK by the NPSA and the NCSC

See how Secure Innovation can Help You and your Business

Good security practices can protect your competitive advantage, making your company more attractive to investors and customers. Laying strong foundations from the start will help your security to be more effective and less costly as your business grows.

Cyber and information security is making headlines every day, and threats are targeting business of all sizes. In 2024, 40% of UK micro-businesses, and 49% of UK small businesses experienced security breaches or attacks, and the average cost of a data breach last year was £3.7 Million.
Click here to read more about how Secure Innovation can help protect you.

Industry Leading Consultancy delivered by:

KeySigma is assured by the NCSC to provide Cyber Advisor services; they are an independant cyber security consultancy based in Cheltenham (UK), that consults and certifies companies across the globe.

Their clients range from sole traders to global multinationals, operating in healthcare, defence, financial services, travel, hospitality, marketing, education, construction, property management, technology, software development, software-as-a-service, legal services, critical infrastructure as well as other sectors.

know more

Cyber Essentials

You will receive a Free Cyber Essentials voucher upon a successful application, improving your Cyber Security alongside the Secure Innovation Review. Cyber Essentials helps organisations put essential controls in place to stop around 80% of common cyber attacks.

Content of the Scheme

Security from the Start

About the Scheme

Designed for founders and leaders of startups in the  emerging technology sector, Secure Innovation outlines cost-effective measures that you can take from day one to better protect your ideas, reputation, and future successes.

Find out if you're eligible

Secure your Products

– Secure by Design principles

– Secure by Default principles

– Intellectual Asset management strategies

– Intellectual Property management strategies

Read More

Understand the Threats

The UK has a strong record in research and development, and a vibrant startup ecosystem. This can make innovative UK companies attractive targets for malicious actors.

Read More

Secure your Partnerships

Partnerships increase the number of external routes into your organisation, as well as any information or data you may share. 

Manage collaboration risks with investors, suppliers, and other partners, and consider security in your investment strategy.

Read More

Secure your Environment

– Start a security dialogue

– Understand and Manage Risks

– Build security into your environment and centre security around critical assets

– Build in security when setting up your IT

Read More

Secure your Growth

As your company continues to evolve, so too should your security measures. 

– Effectively mitigate risks that are introduced as your organisation grows

– Expand safely into new markets

– Provide ongoing security training and promote awareness.

Read More

Frequently Asked Questions

Save Time, Read here first:

How long will the Security Review scheme run for?

Applications for the current scheme will be open until the end of the 25/26 financial year. There are grants available for 500 organisations, which will be allocated on a first-come-first-served basis to organisations who pass the eligibility criteria and assessment.

Is funding guaranteed?

Secure Innovation Security Reviews is a subsidy scheme. Until all slots are filled, organisations that meet the eligibility criteria and successfully pass the application process will be offered access to a partially funded Secure Innovation Security Review. Participating companies will contribute £500; while the government will fund the remaining £2,500.

Funding for the scheme is limited and will be awarded on a first-come, first-served basis. Once the available funding has been allocated, no further awards can be made—meaning only a limited number of companies will be able to benefit from the scheme this financial year.

It should be noted that the government will fund £2,500 (including VAT) of the total cost of the review which is £3,000 (including VAT); by making an application for a Security Review an organisation is confirming their agreement to fund the remaining £500 (including VAT) of the overall cost. This will be invoiced and paid directly to the Security Reviewer.

How do I apply for a Security Review and what's the process?
  1. Complete the KEYSIGMA Secure Innovation Security Review Application Form by contacting [email protected].
  2. Complete the Innovate UK Business Growth Consortium’s application form.
  3. Accept the scheme’s terms and conditions.
  4. Formally appoint KEYSIGMA as their Security Reviewer.
  5. Paying the outstanding £500 to KEYSIGMA.
  6. Complete the preparatory work.
  7. Arrange an in-person site visit with the KEYSIGMA.
  8. Review and sign-off the report.
  9. Confirm that your Security Reviewer has submitted the final report and their invoice for £2,500 via email to [email protected].
What's included with Secure Innovation?

Companies that meet the eligibility criteria and successfully complete the application process will gain access to a subsidised, expert-led security review, delivered by KEYSIGMA, tailored to support innovation while enhancing organisational resilience around the 5 key areas outlined here.

To be accepted onto the scheme, applicants must demonstrate both the capability and commitment to implement protective security measures, including—where necessary—dedicating appropriate financial and operational resources.

Your KEYSIGMA consultant will provide guidance throughout the formal application process, ensuring a smooth and supported experience.

As part of the scheme, participants will also receive a free voucher for the Cyber Essentials certification, a highly regarded UK government-backed standard that helps organisations defend against common cyber threats. Cyber Essentials has been shown to significantly reduce the likelihood of security breaches and insurance claims. Certification is now a mandatory requirement for many government contracts and is increasingly expected by commercial clients handling sensitive data.

How do I know if I'm eligible for the Government funding?

To be eligible to apply, organisations must be working in one of the 17 sensitive areas of the economy set out in the National Security and Investment Act, or one of the selected sectors in Invest 2035: the UK’s modern industrial strategy (Advanced Manufacturing, Clean Energy Industries, Defence, Life Sciences).

You can find the full eligibility criteria here, or contact KEYSIGMA directly to schedule a call with one of their consultants.

How is Secure Innovation funded?

The Secure Innovation Security Reviews scheme is a government-subsidised initiative designed to strengthen the protective security of eligible companies. Participating organisations contribute £500 (including VAT), while HM Government funds the remaining £2,500 (including VAT).

The Security Review scheme is funded through a joint initiative between the Department for Business and Trade (DBT), the Department for Science, Innovation and Technology (DSIT), National Protective Security Authority (NPSA), and the National Cyber Security Centre (NCSC). The review will provide a high-level overview of your overall protective security posture.

It is in the interest of the UK Government to protect our start-ups to maintain our competitive advantage.

What is the aim of Secure Innovation?

The scheme’s aim is to connect organisations with expert security reviewers such as KEYSIGMA’s Cyber Advisors who can review an organisations current protective security practices and provide high quality guidance and advice developed by the UK’s national technical authorities, to help them secure their growth and maintain their competitive edge.

Who are the NPSA?

The NPSA (National Protective Security Authority) It is part of the UK’s intelligence and security community, specifically housed within MI5 (the Security Service).

Purpose: The NPSA provides protective security advice to help organisations reduce the risk of national security threats, such as terrorism, espionage, cyber attacks, and state threats.

You can visit https://www.npsa.gov.uk/ for more information.

Who are the NCSC?

The NCSC stands for the National Cyber Security Centre, which is the UK’s technical authority on cyber security.

The NCSC is part of GCHQ (Government Communications Headquarters), the UK’s intelligence and cyber agency.

Purpose: Amongst other responsibilities, they Coordinate the UK’s cyber defence strategy, Investigate major cyber attacks, and advise businesses, the  government, and the public on how to stay cyber secure.

You can find out more about the NCSC here: https://www.ncsc.gov.uk/

Who are KeySigma?

KEYSIGMA is an NCSC assured Cyber Advisor; approved to deliver Secure Innovation Security Reviews.

Outside of Secure Innovation, their core specialities include data protection compliance, information security, penetration testing, Cyber Essentials certification, and consultancy for ISO certifications.

You can find out more here of visit the KEYSIGMA website: https://keysigma.co.uk/

Is the Security Review report confidential?

Yes. It will only be shared with selected individuals within DBT/DSIT, Innovate UK, NPSA and the NCSC.

Who will my data be shared with?

Your data will be shared with the following organisations involved in the funding, delivery and oversight of the scheme:

– Department for Business and Trade (DBT)
– Department for Science, Innovation and Technology (DSIT)
– Innovate UK
– National Protective Security Authority (NPSA)
– National Cyber Security Centre (NCSC)
– Innovate UK Business Growth service consortium delivery partner

These organisations are responsible for funding, managing, delivering, and evaluating the scheme. Data sharing enables them to monitor the scheme’s effectiveness, assess behavioural change, and inform future improvements or expansion.

What data will be collected as part of the Secure Innovation Security Review Scheme?

Data will be collected through various stages of the scheme, including the application process, site visit, written report, Health Check Questionnaires, and feedback surveys. This may include business contact details, security-related information, and feedback on the scheme.

Have a question we haven't answered?
Contact Us and we’ll answer it for you.