As we speak the ISO27001:2013 is the only auditable international standard which defines the requirements for an Information Security Management System (ISMS). Achieving compliance with the requirements of ISO27001 shows the organization's commitment to managing information security risks while at the same time reducing the cost of information security incidents and improving compliance with legal, regulatory and contractual requirements. It is a milestone for all those organizations who want to be perceived as highly professional and security oriented.
We have been practically working with ISO27001 since 2004 when it was still a British standard (BS7799-2). Since then, we have collaborated with the British Standards Institution (BSI) and co-authored the first ISO27001 Lead Implementer training and certification offered worldwide.
Our consultants can help your company in every aspect of ISO27001 compliance, advising from scope definition and policy writing up to the development of security awareness training. Moreover we can provide our clients with the following services:
- Gap Analysis
- Risk Management
- Selection of Security Controls
- Policies and procedures review
- Security Awareness Training
- Development of key information security processes
- Management of the third party certification process