ISO 27001 is one of the leading standards focused on Information Security Management System (ISMS). The standard defines a number of controls that can be implemented in an organisation, where applicable. Sysprove has supported a number of organisations prepare and obtain the ISO 27001 certification.
Our approach follows the standard’s needs with the addition of information security requirements necessary for the organisation that complements the ISO 27001 controls.
Understand the context of the organisation
Perform a gap analysis against the ISO 27001 standard
Prepare the Statement of Applicability
Identify and document the standard requirements from clauses 4 to 10
Compile information security policies for the applicable controls
Support the organisation in the implementation process
Perform an ISO 27001 internal audit
Support the client with closing of audit findings
Our consultants are certified ISO 27001 Lead Auditors