The global standard for information security and the most recognised standard in both public and private sector, ISO27001 provides a clear, risk-based, practical approach to information security.
We recommend that all clients adopt the ISO27001 approach and utilise Appendix A 'Controls' as a basic benchmark tool for their security infrastructure, even if they have no intention of becoming ISO27001 accredited.
The Information Commissioner, Connecting for Health, government departments and private industry all recognise the standard and feel comfortable working with it. We have worked with many organisations, assisting them in meeting the requirements of ISO27001 in many cases to improve security systems and underpin ISMS projects.
We have internal ISO27001 Auditors and can deliver benchmark exercises and technical remediation work around the standard, including full compliance projects and statements of applicability.