• Oxford: +44 (0)1865 877830 
  • Manchester: +44 (0)161 713 0176 
  • Edinburgh: +44 (0)131 541 0118 
  • New York: +1 646-781-7580 
  • Bucharest: +40 316 301 707 
  • Tokyo: +81 (3) 4588 8181 

ISO 27001 Gap Audit

You are here

An ISO 27001 Gap Audit will determine what your organisation needs to do to achieve certification to the information security standard ISO 27001 so that you can clearly identify what actions you need to take and allocate appropriate budget and resource.

As part of a Dionach ISO 27001 Gap Audit, you will receive an audit plan followed by an inspection visit where a Dionach auditor will review your existing policies, procedures and practices within the scope that is considered for certification. The auditor will then produce a report and explain the main gaps at a closing meeting.

The sections of the standard that Dionach will review are:

  • Likely scope of certification
  • Security policy, risk assessment, statement of applicability
  • Organisation of information security
  • Asset management
  • Human resources security
  • Physical and environmental security
  • Communications and operations management
  • Access control
  • Information systems acquisition, development and maintenance
  • Information security incident management
  • Business continuity management
  • Compliance

The ISO 27001 Gap Audit report will provide a list of the main sections of the ISO 27001 standard together with identification of the current gaps and the related actions that your organisation will have to take in order to obtain certification.

We prefer to deliver this ISO 27001 Gap Assessment report face to face to enable discussion and full comprehension of the issues identified. We also make our auditors available for further meetings and discussions with those who are tasked with undertaking actions required for certification.

Contact us now for a free no-obligation initial consultation