|
Pursuing ISO-27001 certification is a significant undertaking. To
minimize costs and maximize success rate, we will assist clients
with any or all of the following:
Assess
- Understand your requirements, customer
demands, budgets, timetables and resources
- Evaluate and prioritize risks
- Baseline existing documentation
Recommend Approach Suitable to Client Environment
- Develop Scope Statement
- Develop Statement of Applicability (SOA)
- Document current inventory of Information
Systems assets
Plan and Resource Project
- Clarify Risks and Prioritize
- Develop Plans to Mitigate High Priority
Risks
- Identify Critical Internal Resources
- Identify External Resource Requirements
- Document the Table of Contents for
Information Security Management System
Document Policies and Procedures
- Define Standards for ISMS
- Identify Policies and Procedures to
Support ISMS
- Adapt Templates to Client Requirements
- Identify Logs for Management of System
Test, Correct and Certify
§
Plan
§
Do
§
Check
§
Act
- Manage Corrective Actions
- Work with ISO Registrar to provide:
§
Pre-certification Audit
§
Certification Audit. |
