Information security – your choice
For many, ISO27001 will provide evidence that you are taking information security seriously; that your organisation can be trusted to handle customer data; that you can be relied upon to keep trade secrets confidential; that you have what it takes to be an approved supplier or partner; that you protect personal data and comply with GDPR.
Whether you want official recognition of an exemplary track record, or need to ensure that past incidents cannot happen again, ISO/IEC 27001 and related information security standards (including BS-10012) can provide the framework for continuous improvement and measures of achievement that you need.
Some security standards are deemed too heavyweight for many, which is why we are also certified assessors in the new Cyber Essentials Scheme and the IASME Standard (Information Assurance for Small and Medium Enterprise), which includes GPDR readiness.
We provide a range of information security services that range from initial advice through to your security assurance award and beyond:
Security Risk Assessment
We will plan, lead and if necessary resource a comprehensive audit of your information security vulnerabilities. We consider policies, procedures, operations, technology infrastructure and human interactions. read more
Risk Treatment
Once you know where you are most vulnerable, we will help devise the most appropriate measures and prioritise their implementation. For those risks that cannot be cost-effectively eliminated, we will help you plan mitigating actions. read more
Validation and Audit
With the risks properly understood and measures in place to maintain the confidentiality, integrity and availability of your information resources, we will help you obtain the recognition you deserve with validation in advance of full audit. read more