To findoutmore about ISO27001or to arrange an appointment, please contact:
01905 670303 or email
WHY ISO27001CERTIFICATION?
Information is an assetwhich, likeother important
business assets, has avalue to anorganisation and
consequentlyneeds tobe suitablyprotected.
This standardwill helpyour companycoordinate all
your securityefforts bothelectronicallyandphysically,
coherently, cost effectivelyandwith consistency.
An ISO27001 certification canbe achievedbyany
business of any size, in anygiven sector,which is
looking to increase the company’s securityof its data.
Themainbenefits include:
BENEFITSTOYOU
•
Cost reductions due to avoiding incidents
•
Smoother runningoperations as responsibilities
andprocesses are clearlydefined
•
Improvedbusiness image in themarketplace
– customers havepeaceofmind that the
company is trustworthy
BENEFITSTOYOURCUSTOMERS
•
Workingwith a trustworthyprovidermaintains
the company’s own integrity to the safeguarding
of its data
•
Installs confidence further down the supply
chain resulting in stronger customers /
supplier relationships
BENEFITSTOYOURSTAFF
•
Having appropriate access controls inplace lowers
the riskof accidental exposure toemployees of
confidential/sensitive information
•
Reassurance that their employer ismeeting
datahandling securityguidelines
•
Defines clearlyandprecisely roles and
responsibilities therefore job satisfaction
andproductivity is increased
DIDYOUKNOW?
Government research reveals that 90%of large
businesses and74%of small businesses reported
cyber securitybreaches in2015.
50%of theworst breaches in theyearwere caused
by inadvertent humanerror.
The averagedatabreachnowcosts up to£3.14m for
largefirms andup to£311,000 for small businesses.
DON’TJUSTTAKEOURWORDFOR IT
CAROLINEMAPES, ITQUALITYMANAGERFROM
ICNET INTERNATIONALLTDSAID:
“Wedecidedwewished tobe certified toboth improve
our processes andprocedures but also tobe able to
satisfyour customers thatwe are aprofessionally
run company.Wehaveboth ISO9001:2008 and ISO
27001:2013Management Standards, and ISOQuality
Services Ltdhelpeduswith the implementation stages,
helpingus put together themanuals to initiallyget us
certified and through advice and traininghaveenabled
us toprovide suitabledocumentation and records to
maintain and improveour systems.Webelieve that
ISO certification ismandatory in thehighly specialised
environment inwhichweoperate andwewouldbe
significantlydisadvantaged ifwedidnot have these
processes inplace”.
ALREADYHAVE ISO27001?
We also carryout ISO27001 consultancy towards
UKASAccreditation andoffer an Intermediate and
AdvancedLevel InformationSecurityManager
Training course.
2.WRITINGOFMANUAL
•Manual is complied
•Compulsoryprocedures are included - in
linewithyour current business procedures
3. PRESENTATIONOFCERTIFICATION
•Once all requirementsaremet presentation
ofmanual and certificate ismade
•Company is nowcertified
1. INITIALASSESSMENT
• Identifyareas of non compliance
•Recommend areas of improvement to
meet requirements
• Information is gathered to compilemanual
