ISO 27001 is an internationally recognised standard, providing a management system framework to ensure that your information is secured under management control.

By adopting its requirements; identification and classification of information; considering threats and controlling availability; preserving integrity and protecting confidentiality; you can significantly reduce your business risks.

Certification to ISO 27001 is proof of independent verification that your Information Security Management System meets the international standard and is continually maintained & improved to keep up with new threats.

Any organisation which is certificated to ISO 27001 can be relied upon to respond effectively to any threat to business continuity, protect information against breaches in confidentiality and to demonstrate governance of its information technology systems.

- Demonstrates the independent assurance of your internal controls and meets corporate governance and business continuity requirements

- Independently demonstrates that applicable laws and regulations are observed

- Provides a competitive edge by meeting contractual requirements and demonstrating to your customers that the security of their information is paramount

- Independently verifies that your organizational risks are properly identified, assessed and managed, while formalizing information security processes, procedures and documentation

- Proves your senior management’s commitment to the security of its information

- The regular assessment process helps you to continually monitor your performance and improve

The benefits can be substantial.

1 – ENQUIRY
Initial telephone followed by information pack containing costs, assessment process and details of commitment scheme.

3 – ASSESSOR CONTACT
Initial agreement/discussion, agree onsite dates/timescales.

4 – STAGE 1 ASSESSMENT
always held at your premises. The Stage 1 aims to establish that your occupational management system meets the requirements on ISO 27001. This also includes a detailed review of the site and adjoining areas. We are also looking at the related processes taking place. The assessor will feedback findings throughout the assessment and leave a detailed report that clearly identifies any gaps that need to be addressed.

5 – ANY GAPS IDENTIFIED ARE ADDRESSED AT THIS STAGE BEFORE THE STAGE 2 ASSESSMENTS.
The Assessor develops for the Stags 2 assessment plan and forwards to you prior to the assessment.

2 – COMMITMENT
Welcome pack, commitment certificate & initial contact.

6 – STAGE 2 ASSESSMENT
Carried out onsite – The Stage 2 Assessment verifies that you are working to the occupational management system and you are meeting the requirements of ISO 27001. We will be assessing your onsite practices and the records that support your activities.

7 – FINAL VERIFICATION
Your application is submitted to an external panel for approval. Certification process: Approved application receive: Award Letter, Certificate, CD ROM containing the Certification Marks Customer Satisfaction Questionnaire

8 – ANNUAL SURVEILLANCE
All organisations certified for ISO 27001 are required to undergo annual surveillance visits. The assessor will agree the date with you at the end of your stage 2 assessment. We will remind you 1 month prior to that visit. The assessor will also contact before the onsite visit. We will notify you of ongoing communication & invite you to events and updates NB Organisations that do not meet the requirement of ISO 27001 during the Stage 2 Assessment are required to have a revisit to verify the gaps have been addresses.

Name (required)

Position within Organisation: (required)

Phone: (required)

Email: (required)

Company name: (required)

Address: (required)

Number of Permanent Sites: (required)

Location of sites (if more than 1): (required)

Number of Full Time Staff: (required)

Number of Part Time Staff: (required)

Standard(s) you are interested in (required)