Information Security Management - ISMS 
(ISO/IEC 27001)

ISO 27001, previously BS7799, is used commonly since 1995 for managing information security. the standard helps to address the all too common and often divesting business impacts such as glitches attributable to viruses, loss of data, improper disclosure and inability to retrieve information. 

This certification offers peace of mind to organizations wanting to demonstrate confidence to customers, shareholders, stakeholders and prospective partners that they have successfully implemented on strong information security management system.

---

---

ISMS Planning Process

ISO 27001 provides a model for establishing, implementing, operating, monitoring, reviewing, and maintaining information on ISMS. ISO 27001 moves around a top-down, risk-based approach and is technology-neutral. The specification defines a six-part planning process:

1. Define a security policy
2. Define the scope of the ISMS
3. Conduct a risk assessment
4. Manage identified risks
5. Select control objectives and controls to be implemented
6. Prepare a statement of applicability

---

Any organization who wants to protect information can get it certified against ISO 27001.

---

The ISMS (ISO 27000) Family

Other standards being developed in the 27000 family are:

• 27003-implementation guidance
• 27004-an information security management measurement standard suggesting metrics to help improve the effectiveness of an ISMS
• 27005-an information security risk management standard. (Published in 2008)
• 27006-a guide to the certification or registration process for accredited ISMS certification or registration bodies. (Published in 2007)
• 27007-ISMS auditing guideline

---

ISMS is Not Just for IT Companies!

The ISMS assists organizations to carry out the day to day management of information in a systematic and risk free way and to improve on the protection of this very crucial resource in all organizations i.e. INFORMATION . A notable point is that this standard is not an industry specific standard and information security is not JUST IT security. 


For more details please contact our Business Development Department.

We specialize in Certification Services

• Quality Management
• Environmental Management
• Health and Safety
• Food Safety
• Information Security
• View all

---

---

Contact Us

---

More Information

1. About Us
2. Our Services
3. ISO History
4. Certification Process
5. Our Accreditation
6. Contact Us

---

Our Accreditation

---

Consultant Registration

• Consultants can take advantage of our credible network to increase their client base. Become our Registered Consultant today.

Register Now!

Standards in Detail

1. ISO 9001
2. ISO 14001
3. ISO 45001
4. ISO 22000
5. ISO PAS 223:2011
6. ISO 13485
7. ISO 20000
8. ISO 27001
9. ISO 30000
10. ISO 15378
11. ISO 22301
12. AS 9001
13. HACCP
14. TS 16949
15. WHO-GMP

Contact Us

Headquarters

Email

Phone

• Office No 19, 1-13 Adler Street,
• London E1 1EG
• United Kingdom
• [email protected]
• +44 207 1939 605

---

Visit Us

---