Gap analysis
Assess existing practices against ISO 27001 requirements
Our team can provide a comprehensive gap analysis against the ISO 27001 clauses and requirements with the aim of assessing current practices and identifying areas of improvement to achieve the desired objectives (e.g. obtaining certification under ISO 27001 or improving the maturity of the ISMS).
Design and implementation
Develop and deliver an implementation plan to achieve ISO 27001 compliance
Our team can provide support to:
- Define ISMS scope, its boundaries and framework development.
- Draft or review key policies and related documentation in alignment with the ISO 27001 requirements and your information security objectives.
- Define or improve your information security risk assessment and risk treatment plans.
- Deliver a project manager role through one of our experts to minimise impact to your business and keep the ISMS knowledge centralised.
Assessment and certification
Confirm readiness for assessment and identify opportunities for improvements
Our team can:
- Conduct independent internal audit reviews in alignment with clause 9.2 of the ISO 27001 standard and taking into account the ISO/IEC 27007, Guidelines for information security management systems auditing.
- Provide consulting support throughout the certification process, including preparing key personnel for the audit and managing any agreed remediation plans.
- Follow up corrective action plans to ensure that issues are defined, tracked and appropriately communicated as required to comply with ISO 27001.
Continuous improvement
Keep the ISMS fit for purpose against the ever-changing threat landscape
Our team can provide consulting support to ensure that your organisation continually improves the suitability, adequacy and effectiveness of the ISMS. These services include:
- Managing, monitoring and maintaining your ISMS.
- Planning and conducting internal audits.
- Maintaining relevant policies and related documentation up to date.
- Managing transitions to revised versions of the ISO 27001 standard.
Our expertise and highly qualified team
Team members have experience in dealing with complex environments and projects across all sectors. Our tailored approach to working with clients makes us stand out. We can help support you in undertaking an independent IT compliance assessment utilising highly qualified professionals, holding relevant qualifications, such as:
- Certified Information System Auditor (CISA)
- Certified Information Security Manager (CISM)
- ISO 27001 Lead Auditor
- ISO 27001 Lead Implementer
- ITIL
- PRINCE2
Get in touch
To find out more or discuss your IT audit requirements, please contact our team of Digital consultants using the form below.
This website uses cookies.
Some of these cookies are necessary, while others help us analyse our traffic, serve advertising and deliver customised experiences for you.
For more information on the cookies we use, please refer to our Privacy Policy.
-
This website cannot function properly without these cookies.
-
Analytical cookies help us enhance our website by collecting information on its usage.
-
We use marketing cookies to increase the relevancy of our advertising campaigns.