ISO 27001 Consultation
Why should you implement an ISO 27001 ISMS?
Customers are increasingly demanding that their contractors use an ISO 27001 certified information security management system (ISMS). In addition, the new rules of the General Data Protection Regulation require a functioning ISMS (art. 32 EU GDPR). Since ISO 27001 is an international standard for information security management systems, these requirements cannot be denied. The goal of ISO 27001 is an information security concept that is individually developed and continuously improved for the company. Apart from the added value regarding IT security or information security in the company, the operation of an ISMS also serves to improve the corporate image and as an advantage over other companies.
How does abat support you by the implementation?
We support you in the implementation of an information security management system according to ISO 27001 or, if you wish, we can advise you only in partial areas, e.g. in the implementation of risk analyses, employee training on security awareness or outsourcing checks of your service providers. Basically, we support you in establishing processes, defining roles (e.g. IT security officer or information security officer) and creating the necessary documentation.
Why do you need an Information Security Officer?
Setting up an ISMS is not a temporary solution, after all, the system is operated as a process via a Plan-Do-Check-Act cycle (PDCA). This task is subject to the Information Security Officer. In general, our advice on the implementation of an ISMS in accordance with ISO 27001 concludes with the fact that you can use your ISMS independently. If the workload resulting from the operation of an ISMS cannot be managed by you, you can also engage us as an external Information Security Officer.
Why should you choose abat?
An ISO 27001 certification is almost never voluntarily undertaken by a company. To ensure that you are well prepared for the time before, during and after the certification process, abat offers you consulting services. Our consultants are licensed by DEKRA Certification GmbH as ISO 27001 auditors. Years of experience and regular further training ensure that we orient ourselves to the current standards. Our goal is to support you in setting up an ISMS in accordance with ISO 27001 and to prepare you optimally for certification.
How to you get an ISO 27001 certificate?
Please note that abat can support you in the implementation of an information security management system and accompany you during the audit process. However, the final auditing and certification according to ISO 27001 may only be performed by a certification body accredited according to ISO 27006. All accredited certification bodies are listed on the website of the German Accreditation Body (DAkkS).
Free initial consultation to analyze your needs
During the first consultation, you define your initial situation and we clarify the first questions. This appointment is free of charge and non-binding for you.