Let’s demystify cybersecurity, one question at a time

Frequently asked questions

What is Sicra and what does Sicra do in IT and security?

Sicra AS is a Norwegian competence house specializing in IT infrastructure, cloud services and cybersecurity. We combine local presence with global security services from Arctic Wolf and other leading providers. Our goal is to be a strategic security partner for our customers.

Where is Sicra AS located?

Sicra AS is located in central Oslo at Biskop Gunnerus' Gate 14A, 0185, Norway.

How can I contact Sicra?


General inquiries:

Phone: +47 648 08 488
Email: firmapost@sicra.no


Invoice inquiries:

Email: faktura@sicra.no


Office address:

Sicra AS
Regus Posthuset
Biskop Gunnerus’ gate 14A
0185 Oslo


Postal address:

Sicra AS
P.O. Box 354 Sentrum
0101 Oslo


Contact form:

You can also contact us via the contact form. 

What does Sicra AS offer?

Sicra offers services in the following areas:


Security monitoring and incident response: We monitor threats and handle incidents through our SOC services, ensuring systems return to operation quickly and efficiently.


Security advisory: We provide consulting, assessment, and strengthening of your security strategy while ensuring compliance with regulations such as NIS2.


Regulatory compliance: We help you meet requirements such as NIS2, ensuring your cybersecurity follows all industry standards and legal frameworks.


Other services: From penetration testing to cloud security and incident handling, we tailor solutions for secure and uncompromising operations.


Sicra Incident Response Team (IRT): Experienced a security breach? Contact Sicra’s Incident Response Team (IRT) at any time.

Who is the CEO of Sicra AS?

Sicra’s CEO is Stig Valderhaug, who has held the position since September 2016.

When was Sicra established?

Sicra was established in September 2016.

Has Sicra been sold?

In 2024, Sicra's original owners sold 51% of their shares to a Norwegian Private Equity company called Credo Partners AS. All the original owners still hold shares in Sicra. In connection with the sale, Sicra received a new organization number.

Has Sicra merged with Bluetree?

Yes. Sicra and Bluetree have merged. Formally, Sicra is acquiring Bluetree through a combination of cash and shares in the new company. All key personnel will continue as shareholders in the combined company.

Which industries does Sicra AS serve?

Sicra AS serves industries such as finance, healthcare, the public sector, and technology. We do not focus on specific sectors as we focus on technology. The companies we assist have 250 employees and upwards and usually have their own IT department.

Which technology platforms does Sicra AS specialize in?

Sicra's consultants have expertise in advanced technology platforms from leading providers in IT security and network management. These include Arctic Wolf, River Security, Palo Alto, Microsoft, F5, Citrix (Netscaler and Citrix Virtual Apps & Desktops), Checkpoint, Fortinet, ControlUp, Duo, Delinea, Proofpoint, VMware, Splunk, AWS, and SecureW2.

Does Sicra AS have partnerships with other providers?

Yes, Sicra AS has strategic partnerships with several recognized technology providers and security companies such as Arctic Wolf, River Security, ETOC, Proact, ECIT, TechStep, Innofactor, Wedel IT, and Conscia.

What is the Response Agreement from Sicra?

The Response Agreement provides access to the right expertise when an incident occurs. The Response Agreements guarantee access to consultants within 2 hours, 4 hours, or 8 hours to assist with critical incidents. We offer 24/7/365 response time within Netscaler.

Why should a company choose Sicra over other Arctic Wolf partners?

Sicra stands out from other partners by combining deep expertise, local advisory, and proven industry leadership:


Award-winning partnership: Sicra was named EMEA Rising Star Partner of the Year 2025 by Arctic Wolf, recognizing the company’s strong expertise, performance, and close collaboration to strengthen cybersecurity in the Nordics.


Gold Partner status: Sicra has achieved Gold Partner status, the highest tier in Arctic Wolf’s Wolf Pack Partner Program, demonstrating proven expertise and successful customer cases.


Arctic Wolf Advisory Council: Sicra is the only Norwegian company represented in the Advisory Council, a prestigious advisory group providing direct input on partner strategy.


Strong position in Norway and rapid growth: Over 50,000 end users are protected by Sicra SOC powered by Arctic Wolf. Our clients span sectors such as auditing, oil and gas, retail, insurance, and several Norwegian municipalities.


High customer satisfaction: Our SOC customers provide excellent feedback. Many are second-time SOC buyers with high expectations.


Certified SOC specialists: Not just senior security advisors, but specialists in working within a Security Operations Center. Our expertise is extensive; see below for a detailed list of key certifications.


Compliance: Sicra SOC powered by Arctic Wolf is compliant with NIS2 and DORA.


In addition, Sicra has a dedicated security team, security-cleared employees (SH/CTS), ISO 27001 certification, and Microsoft Security Partner status, as well as services such as CISO for Hire. This makes us a competence house, not just a reseller—offering both global SOC monitoring and local advisory.

What does Sicra’s partnership with Arctic Wolf entail?

Through its partnership with Arctic Wolf, Sicra provides 24/7 monitoring and incident management via Arctic Wolf’s Security Operations Center (SOC). Sicra acts as the Norwegian contracting partner and local advisor, giving Norwegian organizations both global monitoring and trusted local support.

What is the response time for Sicra and Arctic Wolf during a security incident?

Arctic Wolf’s SOC service monitors continuously and typically alerts within minutes during critical incidents. Sicra can be involved to assist with advisory, coordination, and communication with Norwegian authorities such as NSM or the police.

The average response time from the occurrence of one or more unusual observations to the creation of a case is 7 minutes and 5 seconds. 

If an attack occurs, the customer is immediately alerted by Arctic Wolf to minimize damage. This notification process runs 24/7, 365 days a year according to procedures defined between Arctic Wolf and the customer.

Sicra SOC can also assist in analyzing what happened, assessing countermeasures, communicating with authorities, and rebuilding environments after an attack.

Sicra SOC also offers integration that allows us to receive and handle all incidents forwarded from Arctic Wolf. The purpose is to provide strong recommendations for next steps and support your ongoing security journey.

Why is it beneficial for Norwegian companies to use Sicra as the local Arctic Wolf partner?

Sicra offers Norwegian contracts, local advisory, understanding of frameworks such as GDPR, NIS2, and DORA, as well as NSM recommendations and close customer dialogue. Sicra can also assist in communication with Norwegian authorities, ensuring a safer and more predictable delivery than buying directly from abroad.

What is Sicra’s “CISO-for-hire” service?

Sicra offers CISO-for-hire, giving organizations access to an experienced security leader on a part-time or project basis. The service provides strategic security leadership without the need to hire a full-time CISO. Sicra assists with security strategy, compliance (NSM, GDPR, ISO, NIS2), risk management, and advisory for management and boards.

Which ISO certification does Sicra hold?

Sicra is ISO 27001-2022 certified, demonstrating adherence to best practices for information security management systems. The certification proves that Sicra protects customer data through rigorous processes and controls.

What professional security certifications do Sicra’s staff hold?

Sicra employees hold a wide range of recognized certifications, including:


SANS/GIAC:

  • GIAC Security Operations Manager Certification (GSOM)
  • GIAC Defensible Security Architect Certification (GDSA)
  • GIAC Response and Industrial Defense (GRID)
  • GIAC Certified Forensic Examiner (GCFE)
  • GIAC Critical Controls Certification (GCCC)
  • GIAC Continuous Monitoring Certification (GMON)
  • GIAC Penetration Tester Certification (GPEN)
  • GIAC Certified Incident Handler Certification (GCIH)
  • GIAC Defending Advanced Threats (GDAT)
  • GIAC Certified Intrusion Analyst Certification (GCIA)
  • GIAC Certified Forensic Analyst Certification (GCFA)
  • GIAC Cloud Security Architecture and Design (GCAD)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)


Other:

  • CISSP
  • BTL1 og BTL2 (SOC-analytikere)
  • Palo Alto Networks (PCNSE, PCNSA, PCNSC)
  • Microsoft (M365 Administrator Expert, Azure Solutions Architect Expert, Azure Administrator Associate, Azure Network Engineer Associate, Azure Virtual Desktop Specialty, Cybersecurity Architect Expert)
  • Citrix (CCE-V, CCP-V, CCP-N, CCE-N)

Which customers use Sicra’s security and infrastructure services?

Sicra delivers to both public and private sectors. One example is the security agreement with 28 municipalities in Vestland County, which chose Sicra as their partner for SOC services and advisory. In addition, we have larger customers in industries such as retail, wholesale, finance, and insurance.

How does a company become a customer of Sicra?

Sicra’s process includes needs assessment, agreement on service level, technical setup, and continuous monitoring with reporting and advisory.

What does it cost to use Sicra’s security services?

The price depends on the company’s size, needs, and service level. Sicra offers tailored agreements — contact us for a non-binding quote.

Tailored cybersecurity for institutions and enterprises that allows for innovation, growth, and fearless performance.

Get in touchCall us +47 648 08 488