Get in Touch

ISO27001

A Structured and sustainable approach to compliance management.

OVERVIEW

What is ISO27001?

ISO 27001 is a specification for an information security management system (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation’s information risk management processes and helps organisations establish, implement, operate, monitor, review, maintain and continually improve an ISMS.

 

Benefits

Why become ISO27001 certified

ISO 27001 is the only auditable international standard that defines the requirements of an information security management system (ISMS). CSG will help you achieve this goal and give advandages such as

 

Strengthen your data security and prepare for the future

When a business grows rapidly, it doesn’t take long before there is confusion about who is responsible for which information assets. The Standard helps companies to become more productive by clearly setting out information risk responsibilities.

Continually refine your process and reduce need for frequent audits

ISO 27001 certification provides a globally accepted indication of security effectiveness, negating the need for repeated customer audits, reducing external customer audit days.

Secure your information assets

Cyber attacks are increasing in volume and strength daily. The financial and reputational damage caused by an ineffectual information security posture can be disastrous.

Improve your reputation

Avoid the financial penalties and losses associated with data breaches.  The global average cost of a data breach has skyrocketed to $3.86 million (a 6.4% increase from 2017), according to Ponemon. As the accepted global benchmark for the effective management of information assets, ISO 27001 enables organisations to avoid the potentially devastating financial losses caused by data breaches.

Win new business and give confidence to exsiting clients

Not only does ISO 27001 certification help you demonstrate good security practices, thereby improving working relationships and retaining existing clients, but it also gives you a proven marketing edge against your competitors, putting you alongside the likes of Google, Microsoft and Amazon.

APPROACH

Our ISO27001 approach

CSG will help you achieve your ISO certification using our tried and tested methodology using our inhouse experts. Steps for certification in a simplified summary include

Preparation

Your dedicated Auditor will be in touch to go through the audit plan in preparation for your Stage 1 assessment.

Stage 1 Assessment

There’s no pressure for the first assessment; many are surprised what they already have in place following this visit. The report issued will highlight the next steps you need to take to achieve your certification.

There’s no pressure for the first assessment; many are surprised what they already have in place following this visit. The report issued will highlight the next steps you need to take to achieve your certification.

Stage 2 Assessment

When you’re ready, your Auditor will visit again to establish if your management systems and processes meet the requirements of the standard. You’ll be advised of the Auditor’s recommendations on the day which will be ratified by our Compliance department, and your certification will be issued following the decision.

Annual Assessment

The excellent reputation of ISO 27001 is driven by its requirement for ongoing improvement, so we’ll keep in touch and arrange annual assessments to keep your certification up-to-date.

Request more information on ISO27001