ISO27001 is a well recognised and trusted international standard. Achieving the standard will demonstrate that an you are able to effectively protect your systems and data.
The process of implementation develops an Information Security Management System (ISMS), a structured approach of planning, delivery, audit and evidence for this important business discipline.
The approach incorporates a variety of ‘controls’ that include measures to protect the assets of your organisation, raise awareness among all levels of staff, keep policies fresh and respond to emerging risks and incidents.
Our skill portfolio includes information law specialists, IT experts, change management leads and, of course, ISO27001 qualified consultants.
We love partnering with customers and working collaboratively towards their goals.
Our a pragmatic, plain English approach means that you can experience the value of ISO27001 as a business system, rather than just a ‘tick box’ exercise.
The Right Partnership
Once you’ve made the decision to work towards ISO27001, you are on your way to holding the recognisable international standard for Information Security!
We recommend that you shop around and find, not just a consultancy with knowledge and experience, but someone who can imagine partnering well with. Depending on the maturity of your business, the implementation process can take between six to twelve months.
Best results depend on a commitment to the process and a Senior Leadership Team that can drive the process and allocate resources to keep momentum going during the process.
Our team will initially meet with you to understand your business, its processes, stakeholders, dependencies and system maturity. We will discuss any key deadlines as well as any particular gaps or concerns you may be aware of.
As much as possible, we will seek to work with the framework you already have and complete an initial gap analysis. We will present this to you along with the recommended plan for achieving the necessary standard, including what resources might be necessary to achieve this.
We will meet with you regularly, guiding you through the process and developing bespoke materials that fit into your current governance structure.
When it’s time for audit, we will work with you to prepare, ensuring that you have all the necessary confidence to assert and evidence a strong and enduring Information Security Management System.