We help organisations achieve ISO 27001 accreditation with a UKAS-approved body.
We can offer the following, depending on the maturity of the organisation and its policies and practices:
- ISO 27001 Gap Analysis
- Development of the Information Security Management System
- Review of an established ISMS
- Risk Analysis
- Training and testing against an established ISMS
- Yearly review
As such, our service can take an organisation from no ISMS to a fully accredited operation with all policies and procedures in place, in practice, and in an established cycle of continuous development.
Establish a Culture of Concern for Information Security
Our unique expertise and process maps ISO 27001 with the risk assessments and analysis necessary to perform a proper Data Protection Impact Assessment (DPIA), and is mapped to the Cyber Assessment Framework from the NCSC. This means your organisation can become ISO 27001 accredited, be compliant with DPA 2018 and even meet the EU’s Security of Networks and Information Systems if you qualify as an Operator of Essential Services (OES).