Case Study

Aberdeen Football Club

Elevating cybersecurity, cyber awareness, and Incident Response Planning

Aberdeen Football Club

About the client

Formed in 1903, Aberdeen Football Club is a Scottish Professional Football Club based in Aberdeen. They compete in the Scottish Premiership and are the only Scottish team to have won two European trophies, The European Cup Winners Cup and European Super Cup in 1983.

Client objectives

Aberdeen Football Club engaged with Nimbus Blue to further enhance their existing cybersecurity posture and Incident Response Planning (IRP). As part of this objective, the organisation was also seeking to work with an external trusted partner to assist with the completion of IASME (Information Assurance for Small and Medium Enterprises) Cyber Essentials and Cyber Assurance certifications. To maintain cyber awareness and continue to promote best practice across the organisation, staff training was also required to enhance cyber awareness and IRP.

Services provided

Working closely with Aberdeen Football Club, Nimbus Blue helped the organisation elevate their existing cybersecurity by providing a bespoke suite of security tools and services. This included:

  • Assisting with IASME Cyber Essentials and Cyber Assurance for both the Club and Community Trust (AFCCT).
  • Conducting a cybersecurity audit aligned with the NIST (National Institute of Standards and Technology) Cyber Security Framework and providing the organisation with a position report.
  • Providing monthly and quarterly meetings to ensure the organisation’s security journey is effectively supported and maintained.

In addition, cyber awareness and Incident Response Planning (IRP) was enhanced through tailored training sessions and workshops for staff. This included:

  • Delivering security awareness sessions for the Club staff.
  • Hosting interactive Cybersecurity Incident Response Planning (IRP) workshops to enable the organisation to test and develop their incident response plan.

Outcome & results

The bespoke suite of security tools and services provided by Nimbus Blue has enabled Aberdeen Football Club to continue their commitment to effective cybersecurity. This includes completing industry-recognised cybersecurity certifications and ensuring best practices and enhanced security awareness across the organisation. To date, key results include:

  • Completing a cybersecurity audit, including the provision of a position report.
  • Completion of Cyber Essentials certification for both Club and Trust.
  • Hosting a successful IRP workshop for effective planning in the event of a cyber incident.
  • Delivering multiple cybersecurity awareness sessions to the staff, covering a broad range of topics.

“Since engaging with Nimbus Blue as our trusted security advisors, our cybersecurity landscape has seen remarkable improvements. Their expertise and guidance have not only helped us achieve Cyber Essentials certification but have also fortified our internal commitment to cyber and information security. In today’s dynamic environment maintaining the highest standards through regular review is paramount, and Nimbus Blue have been instrumental in ensuring our processes lead with current best practices.

We owe a great deal of our security success to Nimbus Blue. Their advice and services have been invaluable in implementing key controls and enhancing our overall security posture. With Nimbus Blue by our side, we can focus on our core business activities with peace of mind, knowing that our security needs are in expert hands. The team’s friendly and responsive approach, coupled with their dedication to resolving issues promptly, has exceeded our expectations. We proudly endorse Nimbus Blue as the go-to partner for anyone seeking top-tier cybersecurity solutions.”
– Lee George, IT Manager