October is Cyber Security Awareness Month, and we are pleased to announce a significant security enhancement to our data and risk management software platform, NexGen.
Our latest update in security introduces enterprise-grade authentication through Auth0 integration and Single Sign-On capabilities, reinforcing our commitment to data security in compliance management.
Responding to Growing Cyber Threats
This enhancement comes at a critical time in the cyber security landscape.
Recent high-profile incidents, including a £300 million breach at Marks & Spencer and a devastating cyber-attack on Jaguar Land Rover resulting in estimated losses of £50 million per week, highlight the increasing sophistication of digital threats. Government statistics reveal that over 612,000 UK businesses faced cyber-attacks in the past year alone.
Paul Hayball, Software Engineering Director at Lucion spoke about NexGen’s most recent security enhancement stating;
“We are taking a proactive approach to protecting our clients’ data through the implementation of Auth0. Having an in-house team means we can be hyper reactive to issues, as well as conduct internal and commission external Penetrative Testing, providing assurance to our clients that their sensitive compliance data is safe while ensuring seamless access to critical information.
Robust security isn’t optional – it’s fundamental. Anyone using 3rd party systems should be looking closely at how their data is being processed and how often these systems are being tested for insecurities.”
A Cyber Secure Framework
NexGen’s enhanced security framework builds upon our existing Cyber Essentials Plus certification and regular penetration testing regime.
Neil Smethurst, Area Director at Lucion Services, explains;
“Environmental compliance data is increasingly valuable to organisations.
Our security infrastructure must match the critical nature of the information we protect. This update reinforces our position as industry leaders in both compliance technology and data security.”
The authentication upgrade is part of a comprehensive platform refresh launching in November 2025. This development aligns with our broader technology strategy, including the careful integration of artificial intelligence (AI) capabilities.
AI Innovation with Data Protection at its Core
AI has become the buzzword for many companies, including ours. However, with such developments comes risk. How conversations and input data is processed poses a real challenge for companies looking to protect their clients’ and their own data from breaches.
For some companies, this simply means the use of AI is a non-starter or heavy investment is required to develop an AI within a secure architecture. However, for us, this presented itself as an opportunity for the development of NexGenAI.
Unlike common third-party AI solutions that may compromise data security, our award-winning NexGenAI processes everything within a secure AWS infrastructure. This ensures complete control over data location and processing, with clients able to choose data residency in either the UK or EU for GDPR compliance.
“The difference between NexGenAI and third-party tools is fundamental,” explains Hayball. “When companies use external AI services, they can’t be certain their data won’t be leaked, sold, or used to train other AI models. With NexGenAI, conversations remain private, and data stays secure within on private servers. No one will be training their language models on our data or accessing our clients’ sensitive information.”
AWS Award-Winning AI Developments
Developed in-house by the NexGen Development Team, led by Paul Hayball, NexGenAI was recognised as the winner of the 2024 AWS Generative AI Hackathon.
This secure approach to AI extends beyond basic data protection. NexGenAI features unique Retrieval Augmented Generation (RAG) capabilities, allowing safe integration with storage providers and enabling tailored, cutting-edge solutions without compromising data integrity. This functionality sets Lucion apart as one of the few organisations developing proprietary, secure AI solutions in-house.
“As we continue to innovate in risk management, security remains paramount,” says Phil Coles, Chief Executive Officer at Lucion. “Our approach to implementing new technologies, from advanced authentication to AI integration, sets new expected standards for our clients.”
