ISO/IEC 27001 Information Security Management Consultancy

Keep your information confidential with a certified ISO/IEC 27001 system and show that you have information security risks under control. Compliance with world-class standards can help you win customer trust and new business opportunities. Enterprise Development Grant (EDG) available, subject to terms and conditions!

How to get certified to ISO/IEC 27001

After we have received your application, we’ll appoint a consultant who will guide your company to be certified. Our Consultants are CQI-IRCA Approved – ISO/IEC 27001:2013 Information Security Management Systems (ISMS) Auditor / Lead Auditor.

Gap analysis
This is a pre-assessment service where we take a closer look at your existing information security management system and compare it with ISO/IEC 27001 requirements. This helps identify areas that need more work before the certification body carry out a formal assessment. We will share the details of our findings with you so that if we find gaps, you can close them.

Formal assessment
This happens in two stages. The certification body will review your organisation’s preparedness for assessment by checking if the necessary ISO/IEC 27001 procedures and controls have been developed. If all the requirements are in place, they will then assess the implementation of the procedures and controls within your organisation to make sure that they are working effectively as required for the ISO 9001 certification.

Certification and beyond
When you have passed the formal assessment, the certification body will issue your company an ISO/IEC 27001 certificate, which is valid for three years. Your client manager will stay in touch during this time, paying you regular visits to make sure your system doesn’t just remain compliant, but that it continually improves.

Contact us now for more information.