Business & Technology Risk Partners - ISO27001
Expert advice and support on ISO27001.
ISO27001 implementation
We can work with you to design and implement an ISO27001 management system to allow you to become fully compliant with ISO27001:2013. This can range from initial scoping through to designing processes, procedures, practises, policies and standards. We can also support raising the profile of security within your organisation to ensure buy-in and support from senior stakeholders.
We offer a number of options for how to work with you to implement ISO27001 but the main options are:
- A fast track ISO27001 implementation for fixed price with most implementations taking less than 3 months. Under this arrangement we would not expect to be paid until you have your ISO27001 certificate.
- A longer term lighter touch facilitated approach, training your staff to develop, maintain and improve the ISMS after certification. Our visits would be on an ad-hoc basis at your discretion, charged on an agreed day rate. Certification typically takes 10-12 months
We can also offer detailed advice on how to simply and efficiently implement ISO27001 alongside other assurance activities, such as ISAE3401/SOC 2, in a manner that means there is only one risk assessment and one set of controls to manage
We have a 100% track record in helping clients achieve certification.
ISMS managed service
We can do everything necessary to maintain your ISO27001 certification on a part time ongoing basis. This is very useful to organisations that do not have the in house skills and resources to undertake this role.
Gap Analyses and Pre-audit assessments
We can perform a gap analysis and pre-audit assessments against the standard to identify the areas that require attention prior to or during the implementation of ISO27001. Depending on the scope, for most organisations this does not take more than a few days.
Audit defence and mock audits
If your organisation has an imperative to obtain ISO27001 in a given timescale we can provide support to minimise the risk of not obtaining certification. This support includes mock interviews with staff as well as training on approaches to dealing with certification auditors.
Internal ISMS audits
As required by the standard, we can undertake Internal ISMS audits. For most organisations this does not take longer than a few days. These can give valuable insight into your ISMS implementation.
Training and awareness
We offer half day overview courses as well as an ISO27001:2013 Lead Auditor training course and tailored courses of varying lengths on request. These can be used to equip you with the skills you need to achieve and maintain ISO certification as well as supporting the continued professional education of your people.
Consultancy support
We have a range of consultancy support approaches ranging from full time support for a fixed period through to ad hoc day support over a longer period.
- Why BTRP?
- We have a proven and extensive track record in short timescales ISO27001 implementations leading to successful certification.
- We have consultants specialising in Information Security and ISO27001.
- All of our ISO27001 consultants have at least 25 years in Industry, typically in IT related activities.
- All of our ISO27001 consultants have at least 10 years’ experience of ISO27001.
- We have consultants that are ISO27001 Lead Auditors and Trainers.
- Chris Hall, our lead ISO27001 consultant is a recognised world expert on ISO27001 with a blog, numerous linkedin articles, etc.
- Chris also previously managed a global UKAS accredited certification business with clients all across the world.
- Chris has trained hundreds of ISO27001 Lead auditors around the world.
- Chris is also a committee member on the UK and international ISO committees that helps manage and develop the ISO27K series of standards.
- Chris is also an invited conference speaker on the topic at national and international conferences.