SMB1001: Cybersecurity Standard for NZ SMBs
Protect Your Clients. Grow Your Business. Lead with SMB1001.
Whether your’e an MSP, VAR or IT consultant, it gives you the competitive edge in cybersecurity.
Help your clients protect their data, meet compliance, and grow securely.
Your Gateway to SMB1001 Success
At Bluechip Infotech New Zealand, we make SMB1001 simple and achievable for small and medium-sized businesses (SMBs). We simplify the journey by providing a wide range of trusted vendor solutions that align with SMB1001 requirements. Whether you’re an IT reseller or an SMB, we’re here to help you implement the standard efficiently and effectively.
What is SMB1001?
SMB1001 is a certifiable cybersecurity framework designed specifically for New Zealand small and medium-sized businesses (SMBs). It provides a tiered approach to improving cyber resilience, making it practical, scalable, and affordable.
Why should NZ IT Resellers offer SMB1001?
Cyber threats are rising, and SMBs are increasingly targeted. Traditional standards like ISO 27001 are often too complex or costly. It bridges the gap by offering a five-tiered framework that grows with your clients.
Top reasons to offer SMB1001 to your clients:
Recognised Standard: Trusted by NZ businesses and aligned with government expectations.
Revenue Opportunity: Offer assessments, implementation, and certification services.
Client Retention: Build long-term relationships through ongoing cybersecurity support.
Competitive Edge: Help clients win contracts with visible cyber maturity.
Build trust with clients through a nationally recognised framework.
Simplify conversations around cyber risk and compliance.
How does SMB1001 Work?
It uses a 5-tier model
| Tier | Focus | Key Requirements | Process |
|---|---|---|---|
| Bronze | Basic cybersecurity measures | - Engage a technical support specialist - Install and configure a firewall - Install antivirus software - Implement a backup and recovery strategy | Self-attestation by business owner/director |
| Silver | Intermediate control | - Multi-factor authentication - Regular system updates - Employee cybersecurity training - Comprehensive backup & recovery plans | Self-attestation by business owner/director |
| Gold | Advanced, mature cybersecurity | - Continuous system monitoring - Incident response planning - External security audits | Self-attestation by business owner/director |
| Platinum | Highly detailed cybersecurity practices | - Ongoing threat monitoring - Regular vulnerability assessments - Sophisticated incident response strategies | Annual external audits & continuous oversight |
| Diamond | Comprehensive, real-time cybersecurity | - Continuous auditing - Real-time security analytics - Collaboration with cybersecurity professionals | Real-time monitoring & external audits |
Each tier includes actionable controls and certification pathways.
What’s included for Bluechip Partners?
Partner Playbook: Step-by-step guide for delivering SMB1001 services.
CyberCert Portal Access: Access certification tools, templates, and reporting dashboards.
Marketing Collateral: Co-branded assets to promote.
Training & Webinars: Stay up to date with evolving threats and best practices.
Support from Bluechip NZ: Technical and sales enablement
How can SMB1001 help my clients?
Common questions answered:
Q: Is SMB1001 suitable for small teams?
A: Yes. It’s designed for businesses with limited IT resources and scales with growth.
Q: Does SMB1001 help with compliance?
A: Absolutely. It aligns with NZ government procurement and cybersecurity expectations.
Q: Can I certify my clients?
A: Yes. Through the CyberCert platform, you can guide clients through certification.
Bluechip Infotech New Zealand Blog
Read more exclusive blogs by our experienced team.
