Our role in helping you with ISO 27001
ISO 27001 (formerly BS7799) provides organisations with the assurance of knowing that their information is being protected using controls commonly used by well-managed businesses. As well as an excellent framework for developing and/or enhancing your organisation’s security, ISO 27001 also helps to identify, manage and reduce the range of threats to which information is regularly subjected. Signal Networks will assist you with training; compliance and implementation of the standards illustrated in 27001.
Measuring the capacity of a 27001 project
Measuring the capacity of an ISO 27001 project is a fundamental part of any certification policy. Signal Networks will help you identify the business processes which are essential to your company, and in doing so will create a firm basis for building a successful certification scheme.
Signal Networks will help you assess the levels of information security risk involved in your business processes and a risk treatment plan will be generated from this assessment.
Our IT consultants will perform a comprehensive evaluation of your existing security systems and how they are managed, then compare them to those specified in the ISO 27001 criteria. A detailed report will be generated identifying the required action to attain certification.
We will rationalise the results of the gap analysis and the risk assessment to develop a comprehensive Security Improvement Programme. Our IT consultants will help you put into practice the required security improvements and also assist in the creation of an instructive security control document known as the Statement of Applicability (SOA).
Our IT consultants can guide you through the process of gaining certification. We will assist with final preparations to your ISMS and arrange for a registrar to come and audit your system or provide you with a shortlist of auditors for you to choose from.
- A valuable framework for resolving security issues
- Enhancement of client confidence & perception of your organisation
- Enhancement of business partners’ confidence & perception of your organisation
- Provides confidence that you have managed risk in your own security implementation
- Enhancement of security awareness within an organisation
- Assists in the development of best practice
- Can often be a deciding differentiator between competing organisation