ISO 27001 CERTIFICATION

Protecting Your Information Assets

Increasing dependence on information systems and services means that organisations are more vulnerable to security threats. Information is a valuable business asset that needs to be suitably protected.
Through proper identification and classification of those assets and a systematic risk assessment of threats and vulnerabilities, your company can select appropriate controls to manage those risks and demonstrate that it is preserving confidentiality, integrity and availability of those information assets to clients, consumers, shareholders, authorities and society at large.

What is ISO 27001?

ISO 27001 is an International Standard providing Information Security Management System (ISMS) requirements, in order to enable an organisation to assess its risk and implement appropriate controls to preserve confidentiality, integrity and availability of information assets. The fundamental aim is to protect your organisation’s information.

Our Approach

Key Steps In Our Certification Process Are:
- Definition of certification scope;
- Pre-audit (optional): gap analysis and diagnosis of your current position against the standard;
- Certification audit performed in 2 stages:
Stage 1 – readiness review performed to verify
that the organisation is ready for certification
Stage 2 – evaluation of implementation,
including the effectiveness of the management
system of the organisation
- A certificate valid for 3 years is issued upon satisfactory results of stage 2 audit;
- Surveillance audits to verify that the management system continues to fulfill the requirements of the standard and monitor for continual improvement;
- Re-certification after 3 years to confirm the continued conformance and effectiveness of the management system as a whole.

What are the key benefits?

- Due to dependability of information and information systems, confidentiality, integrity and availability of information is essential to maintain competitive edge, cash-flow, profitability and commercial image.
- Compliance with legal, statutory, regulatory and contractual requirements.
- Improved corporate governance and assurance to stakeholders such as shareholders, clients, consumers and suppliers.
- Through a proper risk assessment, threats to assets are identified, vulnerability to and likelihood of occurrence is evaluated and potential impact is estimated, so your investment is allocated where it is necessary.