Safeguarding your information assets
ISO 27001 certification demonstrates your commitment to managing the security of your organisation’s information systems, processes and policies as effectively as possible. It will provide reassurance to your client base that you have robust procedures in place to mitigate cyber risk and protect their data.
However, becoming ISO 27001 certified is a major undertaking and often over-stretches internal resources. It’s usually easier to seek expert support from a third-party, although the market can prove to be a minefield, with many service providers offering templates and quick fixes that over-promise and under-deliver. In truth you can’t cut corners on compliance.
What we do
Whether this is your first step towards certification or you are already certified and want to review your security posture, we are the ideal partner.
We provide a range of ISO 27001 consultancy services to help you achieve certification and remain compliant.
ISO 27001 Consultancy
Our consultancy services are tailored to meet your needs. Whether you require a single day of training or complete support throughout your ISO 27001 journey, we can help. Typical consultancy engagements include:
- Definition of the scope of your ISMS
- Management Team training
- Creation of information security policies and procedures
- Support with the risk assessment process
- Guidance in identifying controls
- Impartial and objective auditing
- Chairing management review meetings
- Assisting with certification audits
ISO 27001 Gap Audit
A gap audit is an analysis of your organisation’s infrastructure and information systems designed to understand what you need to do to achieve certification.
It’s a good starting point if you need to scope out your project and determine what budget and resource will be required.
Dionach’s consultants will visit your business, review your current policies, procedures and practices, and produce a detailed Gap Analysis Report which outlines your current compliance levels and highlights any areas that need to be addressed.
ISO 27001 Internal Audit
ISO 27001 compliance involves regular internal audits of your Information Security Management System (ISMS) to check ongoing conformance with the standard.
Our highly experienced team of auditors will conduct a full evaluation and produce a detailed report outlining areas of non-conformance and suggesting corrective actions.
We typically deliver this face-to-face to enable a more in-depth discussion of any issues identified during the audit process. Our auditors are also available to deliver the necessary remediation work as required.
UK Gambling Commission ISO 27001 Audit
The Gambling Commission requires that all license holders comply with Remote Gambling and Software Technical Standards (RTS) and that annual security audits are undertaken by an independent, qualified security specialist.
Dionach’s auditors are fully conversant with the industry standards, have much experience in conducting audits and produce reports suitable for submission to the Gambling Commission.
We also assist operators in achieving compliance with the relevant areas of the information security standard ISO 27001, as required by the Gambling Commission.
WHY CHOOSE DIONACH?
As a company we have been ISO 27001-certified for over 17 years. We have the experience, qualifications and certifications to provide an industry-leading compliance support service. Our consultants include Lead Auditors and ex-certification body auditors.
We understand how to implement an ISMS that is certified yet flexible and agile – and we’ve done so for hundreds of organisations across different sectors.
Our experts provide straightforward guidance and will simplify the process of certification.