Introducing Develop Capability

Develop Capability Limited was established in March 2011 with a vision to collaborate and work in partnership with customers, to understand their challenges and provide cost-effective solutions that enable them to meet their strategic goals.

We were one of the first Certification Bodies to be licensed, by IASME, to provide Cyber Essentials and Cyber Essentials Plus Certification.

The Cyber Essentials Scheme is a perfect fit to combine our technical and business-process related competencies in Cyber Security and Information Security Management Systems.

Our clients range from small start-up businesses to global enterprises across multiple sectors with responsibility for elements of the Critical National Infrastructure. All of our clients rely on information and information technology and this introduces risks such as cyber-attacks. The danger is that if controls are applied without careful consideration then they become a barrier to business performance.
Our approach is based on understanding the business needs and then aligning controls so that we enable the business to improve and perform effectively whilst being able to demonstrate compliance. For example, information security management is risk-based and so we need to ensure that the security controls are proportional to the risks faced by our clients.
What defines us

Our Vision

To work in partnership with clients, to collaborate with them and understand their challenges so that we can provide cost-effective services and solutions that enable them to meet their strategic goals.

Our Ethos

To provide personalised customer services that will build a lasting relationship with all of our clients.

Our Mission

To help our clients to achieve accredited certifications that are recognised and respected by their stakeholders.
To help our clients to establish pragmatic and risk-based best practices that create efficiencies while reducing exposure to risks.
To provide expert guidance, training and knowledge-transfer.
To develop a trusted and mutually beneficial partnership, where we provide on-going services and continuous support.

Meet the MD

Bal Matu graduated in Electronic Communication in 1982 and gained his ICT experience while working on projects developing military communications, radar and sonar systems with Racal, Raytheon and Ferranti International. For the past 30 years Bal has been a consultant helping organisations improve their business systems ranging from IT development processes to IT infrastructure management and outsourced supplier management. As a Registered Lead Auditor, he has helped several global Accredited Certification Bodies achieve and maintain their UKAS accreditations for ICT Standards such as TickITplus, ISO 27001, ISO 20000-1 and ISO 22301.
Bal has over 38 years of experience in the industry and is a Chartered Engineer, Fellow of the Chartered Quality Institute, Member of the IET, ISACA Platinum Certified Information Systems Auditor, EC-Certified Ethical Hacker, CREST Registered Penetration Tester and EC-Certified Security Analyst. He is a Cyber Essentials Plus Auditor and Registered Lead Assessor for ISO 27001, ISO 20000-1, ISO 22301, World Lottery Association Security Standard, TickITplus and ISO 9001.
Bal Matu
Bal Matu
What we do

Cyber Essentials

As a licensed Cyber Essentials Certification Body we are able to advise and certify clients to both Cyber Essentials and Cyber Essentials Plus.
Read More

ISO Certification

We have been involved with the ISO 27001, ISO 20000-1 and ISO 22301 Certifications since their inception as Standards and are able to offer expert support.
Read More


As an Accredited Training Provider we deliver both Foundation and Capability training. With over 30 years of experience of helping to develop and deliver the TickITplus Scheme.
Read More
Our Services
We provide a range of services to help our clients improve business performance while achieving accredited certifications in a timely and cost-effective manner.


Training services such as accredited training for Internal and Lead Auditors


Consultancy and project management for compliance projects such as

Vulnerability Scanning and Penetration Testing

Vulnerability scanning and penetration testing services to

Data Privacy and GDPR

GDPR service. We provide knowledge of data protection legislation.


Talk to us today - click the button to get in touch