Leep achieves ISO/IEC 27001:2022 certification

iso-iec-achieved-leep
Jun 8, 2026 Leep Group 2 Minute Read

Strengthening our commitment to information security, trust and excellence 

We're extremely proud to reveal that Leep has achieved ISO/IEC 27001:2022 certification, the internationally recognised standard for Information Security Management Systems (ISMS).

What is ISO/IEC 27001:2022?

ISO/IEC 27001:2022 is the world's leading standard for information security management. It provides a structured framework for identifying, managing and reducing information security risks, while promoting continual improvement across an organisation.

Certification demonstrates that an organisation has implemented robust policies, procedures and controls to protect sensitive information and maintain the confidentiality, integrity and availability of data.

Achieving this certification required an independent assessment of our information security management practices, ensuring they met internationally recognised best-practice standards.

Major milestone for the Group

This certification follows a successful re-certification audit completed in May, and represents a significant expansion of our information security credentials.

While the original certification awarded in 2023 covered Back to Work, the new ISO/IEC 27001:2022 certification now extends across the entire Leep Group, including Back to Work, Leep Trade and Leep Talent.

This broader scope reflects the consistent standards and robust security practices embedded throughout the organisation.

The achievement also strengthens our ability to pursue new opportunities and demonstrates to partners, employers, learners and stakeholders that information security remains a core organisational priority.

Commenting on the achievement, Wayne Lord (Group IT Director) said:

"I'm incredibly proud that we've achieved  ISO/IEC 27001:2022 certification following a successful re-certification audit. It's truly a significant milestone for our organisation.

"Achieving certification at Group level demonstrates the strength of our information security culture and our collective commitment to protecting the data entrusted to us by learners, employers, partners and colleagues.

"The success of this certification is a testament to the dedication and hard work of our ISMS team and colleagues across the Group. The auditor was highly complimentary about the quality of our processes, procedures and systems, which reflects the effort invested by teams throughout the organisation." 

 

Why this matters

We work with thousands of learners, employers, funding bodies and strategic partners every year. With that responsibility comes the need to ensure that information is handled securely, responsibly and transparently.

Achieving ISO/IEC 27001:2022 certification demonstrates our commitment to:

  • Protecting learner, employer and partner data
  • Strengthening our cyber security and risk management processes
  • Meeting evolving regulatory and compliance requirements
  • Building trust and confidence with our stakeholders
  • Driving continuous improvement across our operations

This certification provides independent assurance that information security is embedded within our culture and operational practices.

Looking ahead

Information security is not a one-time achievement, it's an ongoing journey.

ISO/IEC 27001:2022 provides a framework for continual improvement, helping us adapt to emerging threats, evolving technologies and changing stakeholder expectations.

As we continue to grow and support more learners and employers across the UK, we remain committed to maintaining the highest standards of security, governance and operational excellence.

This achievement reflects the dedication of colleagues across the Group and reinforces our commitment to delivering trusted, secure and high-quality services for every learner, employer and partner we support.

Together, we're powering up potential. Securely and responsibly.